Pexip Infinity

pexip_infinity

Vendor: Pexip • 47 CVEs

CVEs (47)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2019-7177 1Pexip 1Pexip Infinity Nov 21, 2024 Sep 25, 2020 N/A· v4 7.2 HIGH· v3 9.0 HIGH· v2 Pexip Infinity before 20.1 allows Code Injection onto nodes via an admin.
CVE-2018-10585 1Pexip 1Pexip Infinity Nov 21, 2024 Sep 25, 2020 N/A· v4 7.5 HIGH· v3 7.8 HIGH· v2 Pexip Infinity before 18 allows remote Denial of Service (XML parsing).
CVE-2018-10432 1Pexip 1Pexip Infinity Nov 21, 2024 Sep 25, 2020 N/A· v4 7.5 HIGH· v3 7.8 HIGH· v2 Pexip Infinity before 18 allows Remote Denial of Service (TLS handshakes in RTMP).
CVE-2017-17477 1Pexip 1Pexip Infinity Nov 21, 2024 Sep 25, 2020 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 Pexip Infinity before 17 allows an unauthenticated remote attacker to achieve stored XSS via management web interface views.
CVE-2015-4719 1Pexip 1Pexip Infinity Nov 21, 2024 Sep 24, 2020 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 The client API authentication mechanism in Pexip Infinity before 10 allows remote attackers to gain privileges via a crafted request.
CVE-2017-6551 1Pexip 1Pexip Infinity May 13, 2026 May 2, 2017 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Pexip Infinity before 14.2 allows remote attackers to cause a denial of service (service restart) or execute arbitrary code via vectors related to Conferencing Nodes.
CVE-2014-8779 1Pexip 1Pexip Infinity May 6, 2026 Feb 3, 2015 N/A· v4 N/A· v3 7.1 HIGH· v2 Pexip Infinity before 8 uses the same SSH host keys across different customers' installations, which allows man-in-the-middle attackers to spoof Management and Conferencing Nodes by leveraging these keys.

Previous 1 23