Vulnerabilities > Pexip

DATE CVE VULNERABILITY TITLE RISK
2021-07-07 CVE-2020-25868 Improper Input Validation vulnerability in Pexip Infinity
Pexip Infinity 22.x through 24.x before 24.2 has Improper Input Validation for call setup.
network
low complexity
pexip CWE-20
7.5
2020-09-25 CVE-2017-17477 Cross-site Scripting vulnerability in Pexip Infinity
Pexip Infinity before 17 allows an unauthenticated remote attacker to achieve stored XSS via management web interface views.
network
low complexity
pexip CWE-79
6.1
2020-09-25 CVE-2018-10432 Resource Exhaustion vulnerability in Pexip Infinity
Pexip Infinity before 18 allows Remote Denial of Service (TLS handshakes in RTMP).
network
low complexity
pexip CWE-400
7.5
2020-09-25 CVE-2018-10585 Resource Exhaustion vulnerability in Pexip Infinity
Pexip Infinity before 18 allows remote Denial of Service (XML parsing).
network
low complexity
pexip CWE-400
7.5
2020-09-25 CVE-2019-7177 Code Injection vulnerability in Pexip Infinity
Pexip Infinity before 20.1 allows Code Injection onto nodes via an admin.
network
low complexity
pexip CWE-94
7.2
2020-09-25 CVE-2019-7178 Improper Input Validation vulnerability in Pexip Infinity
Pexip Infinity before 20.1 allows privilege escalation by restoring a system backup.
network
low complexity
pexip CWE-20
7.2
2020-09-25 CVE-2020-24615 Improper Input Validation vulnerability in Pexip Infinity
Pexip Infinity before 24.1 has Improper Input Validation, leading to temporary denial of service via SIP.
network
low complexity
pexip CWE-20
5.3
2020-09-25 CVE-2020-13387 Improper Input Validation vulnerability in Pexip Infinity
Pexip Infinity before 23.4 has a lack of input validation, leading to temporary denial of service via H.323.
network
low complexity
pexip CWE-20
7.5
2020-09-25 CVE-2020-12824 Improper Input Validation vulnerability in Pexip Infinity 23/23.1/23.2
Pexip Infinity 23.x before 23.3 has improper input validation, leading to a temporary software abort via RTP.
network
low complexity
pexip CWE-20
7.5
2020-09-25 CVE-2020-11805 Improper Input Validation vulnerability in Pexip Infinity and Reverse Proxy and Turn Server
Pexip Reverse Proxy and TURN Server before 6.1.0 has Incorrect UDP Access Control via TURN.
network
low complexity
pexip CWE-20
critical
9.8