← Back

Pexip

pexip

55 CVEs • 5 products

Products (5)

Click to collapse
Toggle
Pexip Infinity
pexip_infinity
47 CVEs
Infinity
infinity
5 CVEs
Infinity Connect
infinity_connect
2 CVEs
Reverse Proxy And Turn Server
reverse_proxy_and_turn_server
1 CVE
Virtual Meeting Rooms
virtual_meeting_rooms
1 CVE

CVEs (55)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2022-27935
1Pexip
1Pexip Infinity
Nov 21, 2024
Jul 17, 2022
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
Pexip Infinity before 27.3 allows remote attackers to trigger a software abort via Epic Telehealth.
CVE-2022-27934
1Pexip
1Pexip Infinity
Nov 21, 2024
Jul 17, 2022
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
Pexip Infinity before 27.3 allows remote attackers to trigger a software abort via HTTP.
CVE-2022-27933
1Pexip
1Pexip Infinity
Nov 21, 2024
Jul 17, 2022
N/A· v4
8.2 HIGH· v3
5.8 MEDIUM· v2
Pexip Infinity before 27.3 allows remote attackers to trigger a software abort via One Touch Join.
CVE-2022-27932
1Pexip
1Pexip Infinity
Nov 21, 2024
Jul 17, 2022
N/A· v4
7.5 HIGH· v3
4.3 MEDIUM· v2
Pexip Infinity before 27.3 allows remote attackers to trigger a software abort via One Touch Join.
CVE-2022-27931
1Pexip
1Pexip Infinity
Nov 21, 2024
Jul 17, 2022
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
Pexip Infinity before 27.3 allows remote attackers to trigger a software abort via the Session Initiation Protocol.
CVE-2022-27930
1Pexip
1Pexip Infinity
Nov 21, 2024
Jul 17, 2022
N/A· v4
5.9 MEDIUM· v3
4.3 MEDIUM· v2
Pexip Infinity 27.x before 27.3 allows remote attackers to trigger a software abort via single-sign-on if a random Universally Unique Identifier is guessed.
CVE-2022-27929
1Pexip
1Pexip Infinity
Nov 21, 2024
Jul 17, 2022
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
Pexip Infinity 27.x before 27.3 allows remote attackers to trigger a software abort via HTTP.
CVE-2022-27928
1Pexip
1Pexip Infinity
Nov 21, 2024
Jul 17, 2022
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
Pexip Infinity 27.x before 27.3 allows remote attackers to trigger a software abort via the Session Initiation Protocol.
CVE-2022-26657
1Pexip
1Pexip Infinity
Nov 21, 2024
Jul 17, 2022
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
Pexip Infinity before 27.3 allows remote attackers to trigger a software abort via One Touch Join.
CVE-2022-26656
1Pexip
1Pexip Infinity
Nov 21, 2024
Jul 17, 2022
N/A· v4
8.2 HIGH· v3
6.4 MEDIUM· v2
Pexip Infinity before 27.3 allows remote attackers to trigger a software abort, and possibly enumerate usernames, via One Touch Join.
CVE-2022-26655
1Pexip
1Pexip Infinity
Nov 21, 2024
Jul 17, 2022
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
Pexip Infinity 27.x before 27.3 has Improper Input Validation. The client API allows remote attackers to trigger a software abort via a gateway call into Teams.
CVE-2022-26654
1Pexip
1Pexip Infinity
Nov 21, 2024
Jul 17, 2022
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
Pexip Infinity before 27.3 allows remote attackers to force a software abort via HTTP.
CVE-2022-25357
1Pexip
1Pexip Infinity
Nov 21, 2024
Jul 17, 2022
N/A· v4
5.3 MEDIUM· v3
5.0 MEDIUM· v2
Pexip Infinity 27.x before 27.2 has Improper Access Control. An attacker can sometimes join a conference (call join) if it has a lock but not a PIN.
CVE-2022-23228
1Pexip
1Pexip Infinity
Nov 21, 2024
Feb 18, 2022
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
Pexip Infinity before 27.0 has improper WebRTC input validation. An unauthenticated remote attacker can use excessive resources, temporarily causing denial of service.
CVE-2021-29656
1Pexip
1Infinity Connect
Nov 21, 2024
Feb 18, 2022
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
Pexip Infinity Connect before 1.8.0 mishandles TLS certificate validation. The allow list is not properly checked.
CVE-2021-29655
1Pexip
1Infinity Connect
Nov 21, 2024
Feb 18, 2022
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
Pexip Infinity Connect before 1.8.0 omits certain provisioning authenticity checks. Thus, untrusted code may execute.
CVE-2021-42555
1Pexip
1Infinity
Nov 21, 2024
Jan 15, 2022
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
Pexip Infinity before 26.2 allows temporary remote Denial of Service (abort) because of missing call-setup input validation.
CVE-2021-35969
1Pexip
1Infinity
Nov 21, 2024
Jan 15, 2022
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
Pexip Infinity before 26 allows temporary remote Denial of Service (abort) because of missing call-setup input validation.
CVE-2021-33499
1Pexip
1Infinity
Nov 21, 2024
Jan 15, 2022
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
Pexip Infinity before 26 allows remote denial of service because of missing H.264 input validation (issue 2 of 2).
CVE-2021-33498
1Pexip
1Infinity
Nov 21, 2024
Jan 15, 2022
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
Pexip Infinity before 26 allows remote denial of service because of missing H.264 input validation (issue 1 of 2).