) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
Search Results (Refine Search)
- Results Type: Overview
- Keyword (text search): pexip infinity
- Search Type: Search All
- CPE Name Search: false
| Vuln ID | Summary | CVSS Severity |
|---|---|---|
| CVE-2024-33850 |
Pexip Infinity before 34.1 has Improper Access Control for persons in a waiting room. They can see the conference roster list, and perform certain actions that should not be allowed before they are admitted to the meeting. Published: June 10, 2024; 5:15:51 PM -0400 |
V4.0:(not available) V3.x:(not available) V2.0:(not available) |
| CVE-2023-37225 |
Pexip Infinity before 32 allows Webapp1 XSS via preconfigured links. Published: December 25, 2023; 1:15:08 AM -0500 |
V4.0:(not available) V3.1: 6.1 MEDIUM V2.0:(not available) |
| CVE-2023-31455 |
Pexip Infinity before 31.2 has Improper Input Validation for RTCP, allowing remote attackers to trigger an abort. Published: December 25, 2023; 1:15:08 AM -0500 |
V4.0:(not available) V3.1: 7.5 HIGH V2.0:(not available) |
| CVE-2023-31289 |
Pexip Infinity before 31.2 has Improper Input Validation for signalling, allowing remote attackers to trigger an abort. Published: December 25, 2023; 1:15:08 AM -0500 |
V4.0:(not available) V3.1: 7.5 HIGH V2.0:(not available) |
| CVE-2022-32263 |
Pexip Infinity before 28.1 allows remote attackers to trigger a software abort via G.719. Published: July 17, 2022; 6:15:08 PM -0400 |
V4.0:(not available) V3.1: 7.5 HIGH V2.0:(not available) |
| CVE-2022-29286 |
Pexip Infinity 27 before 28.0 allows remote attackers to trigger excessive resource consumption and termination because of registrar resource mishandling. Published: July 17, 2022; 6:15:08 PM -0400 |
V4.0:(not available) V3.1: 7.5 HIGH V2.0: 5.0 MEDIUM |
| CVE-2022-27937 |
Pexip Infinity before 27.3 allows remote attackers to trigger excessive resource consumption via H.264. Published: July 17, 2022; 5:15:08 PM -0400 |
V4.0:(not available) V3.1: 7.5 HIGH V2.0: 5.0 MEDIUM |
| CVE-2022-27936 |
Pexip Infinity before 27.3 allows remote attackers to trigger a software abort via H.323. Published: July 17, 2022; 5:15:08 PM -0400 |
V4.0:(not available) V3.1: 7.5 HIGH V2.0: 5.0 MEDIUM |
| CVE-2022-27935 |
Pexip Infinity before 27.3 allows remote attackers to trigger a software abort via Epic Telehealth. Published: July 17, 2022; 5:15:08 PM -0400 |
V4.0:(not available) V3.1: 7.5 HIGH V2.0: 5.0 MEDIUM |
| CVE-2022-27934 |
Pexip Infinity before 27.3 allows remote attackers to trigger a software abort via HTTP. Published: July 17, 2022; 5:15:08 PM -0400 |
V4.0:(not available) V3.1: 7.5 HIGH V2.0: 5.0 MEDIUM |
| CVE-2022-27933 |
Pexip Infinity before 27.3 allows remote attackers to trigger a software abort via One Touch Join. Published: July 17, 2022; 5:15:08 PM -0400 |
V4.0:(not available) V3.1: 8.2 HIGH V2.0: 5.8 MEDIUM |
| CVE-2022-27932 |
Pexip Infinity before 27.3 allows remote attackers to trigger a software abort via One Touch Join. Published: July 17, 2022; 5:15:08 PM -0400 |
V4.0:(not available) V3.1: 7.5 HIGH V2.0: 4.3 MEDIUM |
| CVE-2022-27931 |
Pexip Infinity before 27.3 allows remote attackers to trigger a software abort via the Session Initiation Protocol. Published: July 17, 2022; 5:15:08 PM -0400 |
V4.0:(not available) V3.1: 7.5 HIGH V2.0: 5.0 MEDIUM |
| CVE-2022-27930 |
Pexip Infinity 27.x before 27.3 allows remote attackers to trigger a software abort via single-sign-on if a random Universally Unique Identifier is guessed. Published: July 17, 2022; 5:15:08 PM -0400 |
V4.0:(not available) V3.1: 5.9 MEDIUM V2.0: 4.3 MEDIUM |
| CVE-2022-27929 |
Pexip Infinity 27.x before 27.3 allows remote attackers to trigger a software abort via HTTP. Published: July 17, 2022; 5:15:08 PM -0400 |
V4.0:(not available) V3.1: 7.5 HIGH V2.0: 5.0 MEDIUM |
| CVE-2022-27928 |
Pexip Infinity 27.x before 27.3 allows remote attackers to trigger a software abort via the Session Initiation Protocol. Published: July 17, 2022; 5:15:08 PM -0400 |
V4.0:(not available) V3.1: 7.5 HIGH V2.0: 5.0 MEDIUM |
| CVE-2022-26657 |
Pexip Infinity before 27.3 allows remote attackers to trigger a software abort via One Touch Join. Published: July 17, 2022; 5:15:08 PM -0400 |
V4.0:(not available) V3.1: 7.5 HIGH V2.0: 5.0 MEDIUM |
| CVE-2022-26656 |
Pexip Infinity before 27.3 allows remote attackers to trigger a software abort, and possibly enumerate usernames, via One Touch Join. Published: July 17, 2022; 5:15:08 PM -0400 |
V4.0:(not available) V3.1: 8.2 HIGH V2.0: 6.4 MEDIUM |
| CVE-2022-26655 |
Pexip Infinity 27.x before 27.3 has Improper Input Validation. The client API allows remote attackers to trigger a software abort via a gateway call into Teams. Published: July 17, 2022; 5:15:08 PM -0400 |
V4.0:(not available) V3.1: 7.5 HIGH V2.0: 5.0 MEDIUM |
| CVE-2022-26654 |
Pexip Infinity before 27.3 allows remote attackers to force a software abort via HTTP. Published: July 17, 2022; 5:15:08 PM -0400 |
V4.0:(not available) V3.1: 7.5 HIGH V2.0: 5.0 MEDIUM |