Vulnerabilities (CVE)

Filtered by vendor Pexip Subscribe
Total 43 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-25357 1 Pexip 1 Pexip Infinity 2024-11-21 5.0 MEDIUM 5.3 MEDIUM
Pexip Infinity 27.x before 27.2 has Improper Access Control. An attacker can sometimes join a conference (call join) if it has a lock but not a PIN.
CVE-2022-23228 1 Pexip 1 Pexip Infinity 2024-11-21 5.0 MEDIUM 7.5 HIGH
Pexip Infinity before 27.0 has improper WebRTC input validation. An unauthenticated remote attacker can use excessive resources, temporarily causing denial of service.
CVE-2021-42555 1 Pexip 1 Infinity 2024-11-21 5.0 MEDIUM 7.5 HIGH
Pexip Infinity before 26.2 allows temporary remote Denial of Service (abort) because of missing call-setup input validation.
CVE-2021-35969 1 Pexip 1 Infinity 2024-11-21 5.0 MEDIUM 7.5 HIGH
Pexip Infinity before 26 allows temporary remote Denial of Service (abort) because of missing call-setup input validation.
CVE-2021-33499 1 Pexip 1 Infinity 2024-11-21 5.0 MEDIUM 7.5 HIGH
Pexip Infinity before 26 allows remote denial of service because of missing H.264 input validation (issue 2 of 2).
CVE-2021-33498 1 Pexip 1 Infinity 2024-11-21 5.0 MEDIUM 7.5 HIGH
Pexip Infinity before 26 allows remote denial of service because of missing H.264 input validation (issue 1 of 2).
CVE-2021-32545 1 Pexip 1 Infinity 2024-11-21 5.0 MEDIUM 7.5 HIGH
Pexip Infinity before 26 allows remote denial of service because of missing RTMP input validation.
CVE-2021-31925 1 Pexip 1 Pexip Infinity 2024-11-21 5.0 MEDIUM 7.5 HIGH
Pexip Infinity 25.x before 25.4 has Improper Input Validation, and thus an unauthenticated remote attacker can cause a denial of service via the administrative web interface.
CVE-2021-29656 1 Pexip 1 Infinity Connect 2024-11-21 7.5 HIGH 9.8 CRITICAL
Pexip Infinity Connect before 1.8.0 mishandles TLS certificate validation. The allow list is not properly checked.
CVE-2021-29655 1 Pexip 1 Infinity Connect 2024-11-21 7.5 HIGH 9.8 CRITICAL
Pexip Infinity Connect before 1.8.0 omits certain provisioning authenticity checks. Thus, untrusted code may execute.
CVE-2020-25868 1 Pexip 1 Pexip Infinity 2024-11-21 5.0 MEDIUM 7.5 HIGH
Pexip Infinity 22.x through 24.x before 24.2 has Improper Input Validation for call setup. An unauthenticated remote attacker can trigger a software abort (temporary loss of service).
CVE-2020-24615 1 Pexip 1 Pexip Infinity 2024-11-21 5.0 MEDIUM 5.3 MEDIUM
Pexip Infinity before 24.1 has Improper Input Validation, leading to temporary denial of service via SIP.
CVE-2020-13387 1 Pexip 1 Pexip Infinity 2024-11-21 5.0 MEDIUM 7.5 HIGH
Pexip Infinity before 23.4 has a lack of input validation, leading to temporary denial of service via H.323.
CVE-2020-12824 1 Pexip 1 Pexip Infinity 2024-11-21 5.0 MEDIUM 7.5 HIGH
Pexip Infinity 23.x before 23.3 has improper input validation, leading to a temporary software abort via RTP.
CVE-2020-11805 1 Pexip 2 Pexip Infinity, Reverse Proxy And Turn Server 2024-11-21 9.3 HIGH 9.8 CRITICAL
Pexip Reverse Proxy and TURN Server before 6.1.0 has Incorrect UDP Access Control via TURN.
CVE-2019-7178 1 Pexip 1 Pexip Infinity 2024-11-21 9.0 HIGH 7.2 HIGH
Pexip Infinity before 20.1 allows privilege escalation by restoring a system backup.
CVE-2019-7177 1 Pexip 1 Pexip Infinity 2024-11-21 9.0 HIGH 7.2 HIGH
Pexip Infinity before 20.1 allows Code Injection onto nodes via an admin.
CVE-2018-10585 1 Pexip 1 Pexip Infinity 2024-11-21 7.8 HIGH 7.5 HIGH
Pexip Infinity before 18 allows remote Denial of Service (XML parsing).
CVE-2018-10432 1 Pexip 1 Pexip Infinity 2024-11-21 7.8 HIGH 7.5 HIGH
Pexip Infinity before 18 allows Remote Denial of Service (TLS handshakes in RTMP).
CVE-2017-6551 1 Pexip 1 Pexip Infinity 2024-11-21 7.5 HIGH 9.8 CRITICAL
Pexip Infinity before 14.2 allows remote attackers to cause a denial of service (service restart) or execute arbitrary code via vectors related to Conferencing Nodes.