CVE-2025-32095

Published: Dec 25, 2025Modified: Jan 5, 2026

7.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability: 3.9 / Impact: 3.6

Source: MITRE (Secondary)

Description

Pexip Infinity before 37.0 has improper input validation in signalling that allows a remote attacker to trigger a software abort via a crafted signalling message, resulting in a denial of service.

Affected (1)

Products: Pexip: Pexip Infinity

Pexip

1 product

Pexip Infinity

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Pexip Pexip Infinity	Before 37.0

Related CWEs

CWE-617

Reachable Assertion

The product contains an assert() or similar statement that can be triggered by an attacker, which leads to an application exit or other behavior that is more severe than necessary.

References (1)

https://docs.pexip.com/admin/security_bulletins.htm

Source: cve@mitre.org

Vendor Advisory

Timeline

No history available yet.