← Back

Pexip

pexip

55 CVEs • 5 products

Products (5)

Click to collapse
Toggle
Pexip Infinity
pexip_infinity
47 CVEs
Infinity
infinity
5 CVEs
Infinity Connect
infinity_connect
2 CVEs
Reverse Proxy And Turn Server
reverse_proxy_and_turn_server
1 CVE
Virtual Meeting Rooms
virtual_meeting_rooms
1 CVE

CVEs (55)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2021-32545
1Pexip
1Infinity
Nov 21, 2024
Jan 15, 2022
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
Pexip Infinity before 26 allows remote denial of service because of missing RTMP input validation.
CVE-2021-31925
1Pexip
1Pexip Infinity
Nov 21, 2024
Jul 7, 2021
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
Pexip Infinity 25.x before 25.4 has Improper Input Validation, and thus an unauthenticated remote attacker can cause a denial of service via the administrative web interface.
CVE-2020-25868
1Pexip
1Pexip Infinity
Nov 21, 2024
Jul 7, 2021
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
Pexip Infinity 22.x through 24.x before 24.2 has Improper Input Validation for call setup. An unauthenticated remote attacker can trigger a software abort (temporary loss of service).
CVE-2020-24615
1Pexip
1Pexip Infinity
Nov 21, 2024
Sep 25, 2020
N/A· v4
5.3 MEDIUM· v3
5.0 MEDIUM· v2
Pexip Infinity before 24.1 has Improper Input Validation, leading to temporary denial of service via SIP.
CVE-2020-13387
1Pexip
1Pexip Infinity
Nov 21, 2024
Sep 25, 2020
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
Pexip Infinity before 23.4 has a lack of input validation, leading to temporary denial of service via H.323.
CVE-2020-12824
1Pexip
1Pexip Infinity
Nov 21, 2024
Sep 25, 2020
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
Pexip Infinity 23.x before 23.3 has improper input validation, leading to a temporary software abort via RTP.
CVE-2020-11805
1Pexip
2Pexip Infinity
Reverse Proxy And Turn Server
Nov 21, 2024
Sep 25, 2020
N/A· v4
9.8 CRITICAL· v3
9.3 HIGH· v2
Pexip Reverse Proxy and TURN Server before 6.1.0 has Incorrect UDP Access Control via TURN.
CVE-2019-7178
1Pexip
1Pexip Infinity
Nov 21, 2024
Sep 25, 2020
N/A· v4
7.2 HIGH· v3
9.0 HIGH· v2
Pexip Infinity before 20.1 allows privilege escalation by restoring a system backup.
CVE-2019-7177
1Pexip
1Pexip Infinity
Nov 21, 2024
Sep 25, 2020
N/A· v4
7.2 HIGH· v3
9.0 HIGH· v2
Pexip Infinity before 20.1 allows Code Injection onto nodes via an admin.
CVE-2018-10585
1Pexip
1Pexip Infinity
Nov 21, 2024
Sep 25, 2020
N/A· v4
7.5 HIGH· v3
7.8 HIGH· v2
Pexip Infinity before 18 allows remote Denial of Service (XML parsing).
CVE-2018-10432
1Pexip
1Pexip Infinity
Nov 21, 2024
Sep 25, 2020
N/A· v4
7.5 HIGH· v3
7.8 HIGH· v2
Pexip Infinity before 18 allows Remote Denial of Service (TLS handshakes in RTMP).
CVE-2017-17477
1Pexip
1Pexip Infinity
Nov 21, 2024
Sep 25, 2020
N/A· v4
6.1 MEDIUM· v3
4.3 MEDIUM· v2
Pexip Infinity before 17 allows an unauthenticated remote attacker to achieve stored XSS via management web interface views.
CVE-2015-4719
1Pexip
1Pexip Infinity
Nov 21, 2024
Sep 24, 2020
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
The client API authentication mechanism in Pexip Infinity before 10 allows remote attackers to gain privileges via a crafted request.
CVE-2017-6551
1Pexip
1Pexip Infinity
May 13, 2026
May 2, 2017
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
Pexip Infinity before 14.2 allows remote attackers to cause a denial of service (service restart) or execute arbitrary code via vectors related to Conferencing Nodes.
CVE-2014-8779
1Pexip
1Pexip Infinity
May 6, 2026
Feb 3, 2015
N/A· v4
N/A· v3
7.1 HIGH· v2
Pexip Infinity before 8 uses the same SSH host keys across different customers' installations, which allows man-in-the-middle attackers to spoof Management and Conferencing Nodes by leveraging these keys.