Vulnerabilities (CVE)

Filtered by vendor Pexip Subscribe
Total 43 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-26654 1 Pexip 1 Pexip Infinity 2024-02-28 5.0 MEDIUM 7.5 HIGH
Pexip Infinity before 27.3 allows remote attackers to force a software abort via HTTP.
CVE-2021-29655 1 Pexip 1 Infinity Connect 2024-02-28 7.5 HIGH 9.8 CRITICAL
Pexip Infinity Connect before 1.8.0 omits certain provisioning authenticity checks. Thus, untrusted code may execute.
CVE-2021-29656 1 Pexip 1 Infinity Connect 2024-02-28 7.5 HIGH 9.8 CRITICAL
Pexip Infinity Connect before 1.8.0 mishandles TLS certificate validation. The allow list is not properly checked.
CVE-2022-23228 1 Pexip 1 Pexip Infinity 2024-02-28 5.0 MEDIUM 7.5 HIGH
Pexip Infinity before 27.0 has improper WebRTC input validation. An unauthenticated remote attacker can use excessive resources, temporarily causing denial of service.
CVE-2021-33499 1 Pexip 1 Infinity 2024-02-28 5.0 MEDIUM 7.5 HIGH
Pexip Infinity before 26 allows remote denial of service because of missing H.264 input validation (issue 2 of 2).
CVE-2021-42555 1 Pexip 1 Infinity 2024-02-28 5.0 MEDIUM 7.5 HIGH
Pexip Infinity before 26.2 allows temporary remote Denial of Service (abort) because of missing call-setup input validation.
CVE-2021-33498 1 Pexip 1 Infinity 2024-02-28 5.0 MEDIUM 7.5 HIGH
Pexip Infinity before 26 allows remote denial of service because of missing H.264 input validation (issue 1 of 2).
CVE-2021-35969 1 Pexip 1 Infinity 2024-02-28 5.0 MEDIUM 7.5 HIGH
Pexip Infinity before 26 allows temporary remote Denial of Service (abort) because of missing call-setup input validation.
CVE-2021-32545 1 Pexip 1 Infinity 2024-02-28 5.0 MEDIUM 7.5 HIGH
Pexip Infinity before 26 allows remote denial of service because of missing RTMP input validation.
CVE-2020-25868 1 Pexip 1 Pexip Infinity 2024-02-28 5.0 MEDIUM 7.5 HIGH
Pexip Infinity 22.x through 24.x before 24.2 has Improper Input Validation for call setup. An unauthenticated remote attacker can trigger a software abort (temporary loss of service).
CVE-2021-31925 1 Pexip 1 Pexip Infinity 2024-02-28 5.0 MEDIUM 7.5 HIGH
Pexip Infinity 25.x before 25.4 has Improper Input Validation, and thus an unauthenticated remote attacker can cause a denial of service via the administrative web interface.
CVE-2018-10432 1 Pexip 1 Pexip Infinity 2024-02-28 7.8 HIGH 7.5 HIGH
Pexip Infinity before 18 allows Remote Denial of Service (TLS handshakes in RTMP).
CVE-2020-24615 1 Pexip 1 Pexip Infinity 2024-02-28 5.0 MEDIUM 5.3 MEDIUM
Pexip Infinity before 24.1 has Improper Input Validation, leading to temporary denial of service via SIP.
CVE-2018-10585 1 Pexip 1 Pexip Infinity 2024-02-28 7.8 HIGH 7.5 HIGH
Pexip Infinity before 18 allows remote Denial of Service (XML parsing).
CVE-2020-12824 1 Pexip 1 Pexip Infinity 2024-02-28 5.0 MEDIUM 7.5 HIGH
Pexip Infinity 23.x before 23.3 has improper input validation, leading to a temporary software abort via RTP.
CVE-2017-17477 1 Pexip 1 Pexip Infinity 2024-02-28 4.3 MEDIUM 6.1 MEDIUM
Pexip Infinity before 17 allows an unauthenticated remote attacker to achieve stored XSS via management web interface views.
CVE-2020-11805 1 Pexip 2 Pexip Infinity, Reverse Proxy And Turn Server 2024-02-28 9.3 HIGH 9.8 CRITICAL
Pexip Reverse Proxy and TURN Server before 6.1.0 has Incorrect UDP Access Control via TURN.
CVE-2015-4719 1 Pexip 1 Pexip Infinity 2024-02-28 7.5 HIGH 9.8 CRITICAL
The client API authentication mechanism in Pexip Infinity before 10 allows remote attackers to gain privileges via a crafted request.
CVE-2020-13387 1 Pexip 1 Pexip Infinity 2024-02-28 5.0 MEDIUM 7.5 HIGH
Pexip Infinity before 23.4 has a lack of input validation, leading to temporary denial of service via H.323.
CVE-2019-7177 1 Pexip 1 Pexip Infinity 2024-02-28 9.0 HIGH 7.2 HIGH
Pexip Infinity before 20.1 allows Code Injection onto nodes via an admin.