Vulnerabilities > Pexip

DATE CVE VULNERABILITY TITLE RISK
2022-07-17 CVE-2022-29286 Allocation of Resources Without Limits or Throttling vulnerability in Pexip Infinity
Pexip Infinity 27 before 28.0 allows remote attackers to trigger excessive resource consumption and termination because of registrar resource mishandling.
network
low complexity
pexip CWE-770
5.0
2022-07-17 CVE-2022-25357 Exposure of Resource to Wrong Sphere vulnerability in Pexip Infinity 27.0/27.1
Pexip Infinity 27.x before 27.2 has Improper Access Control.
network
low complexity
pexip CWE-668
5.0
2022-07-17 CVE-2022-26654 Injection vulnerability in Pexip Infinity
Pexip Infinity before 27.3 allows remote attackers to force a software abort via HTTP.
network
low complexity
pexip CWE-74
5.0
2022-07-17 CVE-2022-26655 Improper Input Validation vulnerability in Pexip Infinity 27.0/27.1/27.2
Pexip Infinity 27.x before 27.3 has Improper Input Validation.
network
low complexity
pexip CWE-20
5.0
2022-07-17 CVE-2022-26656 Unspecified vulnerability in Pexip Infinity
Pexip Infinity before 27.3 allows remote attackers to trigger a software abort, and possibly enumerate usernames, via One Touch Join.
network
low complexity
pexip
6.4
2022-07-17 CVE-2022-26657 Unspecified vulnerability in Pexip Infinity
Pexip Infinity before 27.3 allows remote attackers to trigger a software abort via One Touch Join.
network
low complexity
pexip
5.0
2022-07-17 CVE-2022-27928 Unspecified vulnerability in Pexip Infinity 27.0/27.1/27.2
Pexip Infinity 27.x before 27.3 allows remote attackers to trigger a software abort via the Session Initiation Protocol.
network
low complexity
pexip
5.0
2022-07-17 CVE-2022-27929 Improper Input Validation vulnerability in Pexip Infinity 27.0/27.1/27.2
Pexip Infinity 27.x before 27.3 allows remote attackers to trigger a software abort via HTTP.
network
low complexity
pexip CWE-20
5.0
2022-07-17 CVE-2022-27930 Improper Input Validation vulnerability in Pexip Infinity 27.0/27.1/27.2
Pexip Infinity 27.x before 27.3 allows remote attackers to trigger a software abort via single-sign-on if a random Universally Unique Identifier is guessed.
network
pexip CWE-20
4.3
2022-07-17 CVE-2022-27931 Improper Input Validation vulnerability in Pexip Infinity
Pexip Infinity before 27.3 allows remote attackers to trigger a software abort via the Session Initiation Protocol.
network
low complexity
pexip CWE-20
5.0