888 matches found
Design/Logic Flaw
Pexip Infinity 27.x before 27.3 allows remote attackers to trigger a software abort via HTTP...
Code injection
Pexip Infinity before 27.3 allows remote attackers to trigger a software abort via Epic Telehealth...
Design/Logic Flaw
Pexip Infinity before 27.3 allows remote attackers to trigger a software abort via H.323...
Improper access control
Pexip Infinity 27.x before 27.2 has Improper Access Control. An attacker can sometimes join a conference call join if it has a lock but not a PIN...
Code injection
Pexip Infinity before 27.3 allows remote attackers to trigger a software abort, and possibly enumerate usernames, via One Touch Join...
Code injection
Pexip Infinity before 27.3 allows remote attackers to trigger a software abort via One Touch Join...
CVE-2022-32263
Pexip Infinity before 28.1 allows remote attackers to trigger a software abort via G.719...
CVE-2022-32263
CVE-2022-32263 affects Pexip Infinity prior to 28.1. The vulnerability allows remote attackers to trigger a software abort via G.719, impacting availability (CVSS v3.1 base score 7.5, HIGH). Affected component is the Pexip Infinity implementation handling G.719 signaling. According to sources, ve...
CVE-2022-29286
Pexip Infinity 27 before 28.0 allows remote attackers to trigger excessive resource consumption and termination because of registrar resource mishandling...
CVE-2022-29286
Technical details about CVE-2022-29286 are not publicly available in the provided connected documents. Monitor for updates from vendors/security bulletins for impacted versions, affected components, and remediations.
CVE-2022-27937
Pexip Infinity before 27.3 allows remote attackers to trigger excessive resource consumption via H.264...
CVE-2022-27937
CVE-2022-27937 affects Pexip Infinity prior to version 27.3. The vulnerability allows remote attackers to trigger excessive resource consumption via H.264, leading to denial of service (availability impact). The issue is mitigated by upgrading to version 27.3 or later as indicated in security adv...
CVE-2022-27936
Pexip Infinity before 27.3 allows remote attackers to trigger a software abort via H.323...
CVE-2022-27936
Summary: CVE-2022-27936 affects Pexip Infinity prior to 27.3, where remote attackers can trigger a software abort via H.323, effectively a denial of service. Affected versions: before 27.3. Impact: remote, unauthenticated trigger leading to a crash (DoS). Remediation: upgrade to version 27.3 or l...
CVE-2022-27935
Pexip Infinity before 27.3 allows remote attackers to trigger a software abort via Epic Telehealth...
CVE-2022-27935
Pexip Infinity before 27.3 is affected. The vulnerability allows remote attackers to trigger a software abort via Epic Telehealth, caused by an input validation issue in the affected versions. Impact is described as a potential denial/abort condition rather than data exfiltration. Remediation: up...
CVE-2022-27934
CVE-2022-27934 affects Pexip Infinity versions prior to 27.3. A remote attacker can trigger a software abort via HTTP . The issue is described as an input-validation/logic flaw in affected versions. Remediation per PT-2022-18702 is to upgrade to 27.3 or later . If not upgrading, there is no other...
CVE-2022-27934
Pexip Infinity before 27.3 allows remote attackers to trigger a software abort via HTTP...
CVE-2022-27933
Pexip Infinity prior to 27.3 is affected. An issue in One Touch Join allows remote attackers to trigger a software abort. The Red Hat/CNVD and PTSecurity entries corroborate a remote-exploitation flaw, with a fix available in version 27.3 or later. The root cause cited in some sources references ...
CVE-2022-27933
Pexip Infinity before 27.3 allows remote attackers to trigger a software abort via One Touch Join...