888 matches found
CVE-2022-27932
CVE-2022-27932 affects Pexip Infinity prior to 27.3. Remote attackers can trigger a software abort via One Touch Join . The root cause involves the input handling in One Touch Join leading to abort conditions. Impact is a potential denial of service through forced software abort. Affected product...
CVE-2022-27932
Pexip Infinity before 27.3 allows remote attackers to trigger a software abort via One Touch Join...
CVE-2022-27931
CVE-2022-27931 affects Pexip Infinity: versions prior to 27.3 are vulnerable to a remote-triggered software abort via the Session Initiation Protocol. The PT-2022-18699 advisory confirms the affected range and recommends upgrading to 27.3 or later to resolve the issue. Other connected sources des...
CVE-2022-27931
Pexip Infinity before 27.3 allows remote attackers to trigger a software abort via the Session Initiation Protocol...
CVE-2022-27930
Pexip Infinity 27.x before 27.3 allows remote attackers to trigger a software abort via single-sign-on if a random Universally Unique Identifier is guessed...
CVE-2022-27930
CVE-2022-27930 affects Pexip Infinity, with versions prior to 27.3 vulnerable to a denial-of-service-style trigger of a software abort via the single-sign-on feature if an arbitrary UUID is guessed. The issue is triggered through SSO and can be exploited remotely. Mitigation: upgrade to version 2...
CVE-2022-27929
CVE-2022-27929 affects Pexip Infinity 27.x (27.0–27.2) with a faulty input validation path that allows remote attackers to trigger a software abort via HTTP, causing denial of service. The vulnerability is caused by an input validation error in HTTP handling, as reported across multiple sources (...
CVE-2022-27929
Pexip Infinity 27.x before 27.3 allows remote attackers to trigger a software abort via HTTP...
CVE-2022-27928
CVE-2022-27928 affects Pexip Infinity 27.x prior to 27.3. The vulnerability allows remote attackers to trigger a software abort via the Session Initiation Protocol, leading to potential denial of service. The condition is triggered by SIP handling in affected versions. A fix is indicated for vers...
CVE-2022-27928
Pexip Infinity 27.x before 27.3 allows remote attackers to trigger a software abort via the Session Initiation Protocol...
CVE-2022-26657
Pexip Infinity before 27.3 allows remote attackers to trigger a software abort via One Touch Join...
CVE-2022-26657
CVE-2022-26657 affects Pexip Infinity prior to 27.3, where an input validation error in One Touch Join allows remote attackers to trigger a software abort, causing denial of service. The issue is documented across multiple feeds (Red Hat, CNVD, NVD) with the same impact. Affected product/version:...
CVE-2022-26656
CVE-2022-26656 affects Pexip Infinity prior to 27.3. The vulnerability is described across multiple sources as an input validation error in the One Touch Join flow that can allow remote attackers to trigger a software abort and potentially enumerate usernames. Concrete affected product/version: P...
CVE-2022-26656
Pexip Infinity before 27.3 allows remote attackers to trigger a software abort, and possibly enumerate usernames, via One Touch Join...
CVE-2022-26655
Pexip Infinity 27.x before 27.3 has Improper Input Validation. The client API allows remote attackers to trigger a software abort via a gateway call into Teams...
CVE-2022-26655
CVE-2022-26655 affects Pexip Infinity 27.x prior to 27.3, where improper input validation in the client API allows remote attackers to trigger a software abort via a gateway call into Teams. Affected product/component: Pexip Infinity (27.x line). Root cause: input validation flaw in the client AP...
CVE-2022-26654
Pexip Infinity vulnerable before 27.3, where an HTTP-based flaw allows remote attackers to force a software abort. Products affected: Pexip Infinity prior to 27.3 (per CVE-2022-26654). The issue is described as an injection/abort condition triggered via HTTP, with impact stated as a software abor...
CVE-2022-26654
Pexip Infinity before 27.3 allows remote attackers to force a software abort via HTTP...
CVE-2022-25357
Affected software: Pexip Infinity (27.x) prior to 27.2. Vulnerability: Improper access control that could allow an attacker to join a conference (call join) even if the meeting is locked but without a PIN. Root cause/unwrap: Access control error enabling joining a locked, PIN-less meeting. Impact...
CVE-2022-25357
Pexip Infinity 27.x before 27.2 has Improper Access Control. An attacker can sometimes join a conference call join if it has a lock but not a PIN...