Vulnerabilities > Pexip > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-02-18 | CVE-2021-29655 | Insufficient Verification of Data Authenticity vulnerability in Pexip Infinity Connect Pexip Infinity Connect before 1.8.0 omits certain provisioning authenticity checks. | 9.8 |
| 2022-02-18 | CVE-2021-29656 | Improper Certificate Validation vulnerability in Pexip Infinity Connect Pexip Infinity Connect before 1.8.0 mishandles TLS certificate validation. | 9.8 |
| 2020-09-25 | CVE-2020-11805 | Improper Input Validation vulnerability in Pexip Infinity and Reverse Proxy and Turn Server Pexip Reverse Proxy and TURN Server before 6.1.0 has Incorrect UDP Access Control via TURN. | 9.8 |
| 2020-09-24 | CVE-2015-4719 | Improper Privilege Management vulnerability in Pexip Infinity 7.0/9 The client API authentication mechanism in Pexip Infinity before 10 allows remote attackers to gain privileges via a crafted request. | 9.8 |
| 2017-05-02 | CVE-2017-6551 | Improper Input Validation vulnerability in Pexip Infinity Pexip Infinity before 14.2 allows remote attackers to cause a denial of service (service restart) or execute arbitrary code via vectors related to Conferencing Nodes. | 9.8 |