CSAS: Plex Vulnerability - The Last Pass Breach?

CSAS has added a nearly three year old high severity remote code execution vulnerability, the Plex media server to its catalog of exploited security flaws. The flaw could allow threat actors with admin privileges to abuse the camera upload feature and remotely execute arbitrary Python code in low complexity attacks. Issue is being linked to the incident involving a last past senior DevOps engineer whose computer was hacked last year and a key logger was installed seems to be a case in point of the self replicating nature of hacks and breaches.