Lucene search
+L

480 matches found

Cvelist
Cvelist
added 2025/12/25 12:0 a.m.23 views

CVE-2025-59683

Pexip Infinity 15.0 through 38.0 before 38.1 has Improper Access Control in the Secure Scheduler for Exchange service, when used with Office 365 Legacy Exchange Tokens. This allows a remote attacker to read potentially sensitive data and excessively consume resources, leading to a denial of servi...

8.2CVSS0.00285EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/25 12:0 a.m.4 views

CVE-2025-66377

Pexip Infinity before 39.0 has Missing Authentication for a Critical Function in a product-internal API, allowing an attacker who already has access to execute code on one node within a Pexip Infinity installation to impact the operation of other nodes within the installation...

7.5CVSS7.1AI score0.00194EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/12/25 12:0 a.m.4 views

Pexip Infinity 安全漏洞

Pexip Infinity Pexip Video Conferencing Cloud Collaboration Platform is a video conferencing cloud collaboration platform from the Norwegian company Pexip. The product provides high quality and secure cloud conferencing capabilities. A security vulnerability exists in Pexip Infinity versions 15.0...

9.1CVSS6.2AI score0.00285EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/12/25 12:0 a.m.4 views

Pexip Infinity 安全漏洞

Pexip Infinity Pexip Video Conferencing Cloud Collaboration Platform is a video conferencing cloud collaboration platform from the Norwegian company Pexip. The product provides high quality and secure cloud conferencing capabilities. A security vulnerability exists in Pexip Infinity versions 33.0...

7.5CVSS6.4AI score0.00268EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/12/25 12:0 a.m.5 views

PT-2025-53395

Name of the Vulnerable Software and Affected Versions Pexip Infinity versions 35.0 through 38.1 Description Pexip Infinity, in non-default configurations utilizing Direct Media for WebRTC, exhibits an improper input validation issue within its signalling process. This flaw allows an attacker to...

7.5CVSS6.6AI score0.00268EPSS
Exploits0References6
CNNVD
CNNVD
added 2025/12/25 12:0 a.m.5 views

Pexip Infinity 安全漏洞

Pexip Infinity Pexip Video Conferencing Cloud Collaboration Platform is a video conferencing cloud collaboration platform from the Norwegian company Pexip. The product provides high quality and secure cloud conferencing capabilities. A security vulnerability exists in Pexip Infinity versions prio...

7.5CVSS6.4AI score0.0032EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/12/25 12:0 a.m.2 views

CVE-2025-49088

Pexip Infinity 32.0 through 37.1 before 37.2, in certain configurations of OTJ One Touch Join for Teams SIP Guest Join, has Improper Input Validation in the OTJ service, allowing a remote attacker to trigger a software abort via a crafted calendar invite, leading to a denial of service...

5.9CVSS6.4AI score0.00271EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/12/25 12:0 a.m.7 views

Pexip Infinity 安全漏洞

Pexip Infinity Pexip Video Conferencing Cloud Collaboration Platform is a video conferencing cloud collaboration platform from the Norwegian company Pexip. The product provides high quality and secure cloud conferencing capabilities. A security vulnerability exists in Pexip Infinity versions 35.0...

7.5CVSS6.4AI score0.00268EPSS
Exploits0References2
CVE
CVE
added 2025/12/25 12:0 a.m.16 views

CVE-2025-48704

CVE-2025-48704 affects Pexip Infinity 35.0–37.2 prior to 38.0. The issue is improper input validation in the signalling path, which can trigger a software abort and cause a denial of service. Red Hat, CIRCL, EUVD, NVD, and CVE listings corroborate the impact as a DoS due to signalling input valid...

7.5CVSS6.4AI score0.00268EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2025/12/25 12:0 a.m.26 views

CVE-2025-66377

CVE-2025-66377 affects Pexip Infinity prior to 39.0. A missing authentication for a critical function in a product-internal API allows an attacker who already has code execution on one node to impact the operation of other nodes in the installation. This is not listed as exploitable in the provid...

7.5CVSS7.1AI score0.00194EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/12/25 12:0 a.m.10 views

PT-2025-53392

Name of the Vulnerable Software and Affected Versions Pexip Infinity versions prior to 39.0 Description A critical function within a product-internal API lacks proper authentication. An attacker who has already gained the ability to execute code on one node within a Pexip Infinity installation ca...

7.5CVSS7.2AI score0.00194EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2025/12/25 12:0 a.m.7 views

PT-2025-53391

Name of the Vulnerable Software and Affected Versions Pexip Infinity versions 32.0 through 37.1 Description Pexip Infinity, in specific configurations of OTJ One Touch Join for Teams SIP Guest Join, exhibits improper input validation within the OTJ service. This flaw allows a remote attacker to...

5.9CVSS6.7AI score0.00271EPSS
Exploits0References4
CVE
CVE
added 2025/12/25 12:0 a.m.17 views

CVE-2025-32096

The CVE-2025-32096 entry affects Pexip Infinity software versions 33.0 through 37.0 (before 37.1). The vulnerability stems from improper input validation in signaling, which can cause an attacker to trigger a software abort and result in a denial of service. Remediation is to upgrade to Pexip Inf...

7.5CVSS6.5AI score0.00268EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2025/12/25 12:0 a.m.20 views

CVE-2025-66378

CVE-2025-66378 affects Pexip Infinity 38.0 and 38.1 (before 39.0). The issue is insufficient access control in the RTMP implementation, allowing an attacker to disconnect RTMP streams traversing a Proxy Node. Supported by Red Hat and ENISA/NVD entries; PT-2025-53393 explicitly recommends updating...

7.5CVSS6.5AI score0.00218EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2025/12/25 12:0 a.m.6 views

Pexip Infinity 访问控制错误漏洞

Pexip Infinity Pexip Video Conferencing Cloud Collaboration Platform is a video conferencing cloud collaboration platform from Pexip, Norway. The product provides high quality and secure cloud conferencing capabilities. An Access Control Error vulnerability exists in Pexip Infinity versions prior...

7.5CVSS6.8AI score0.00194EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/12/25 12:0 a.m.2 views

CVE-2025-66378

Pexip Infinity 38.0 and 38.1 before 39.0 has insufficient access control in the RTMP implementation, allowing an attacker to disconnect RTMP streams traversing a Proxy Node...

5.9CVSS6.5AI score0.00218EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/12/25 12:0 a.m.5 views

Pexip Infinity 安全漏洞

Pexip Infinity Pexip Video Conferencing Cloud Collaboration Platform is a video conferencing cloud collaboration platform from the Norwegian company Pexip. The product provides high quality and secure cloud conferencing capabilities. A security vulnerability exists in Pexip Infinity versions 35.0...

7.5CVSS6.4AI score0.00268EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/12/25 12:0 a.m.5 views

Pexip Infinity 安全漏洞

Pexip Infinity Pexip Video Conferencing Cloud Collaboration Platform is a video conferencing cloud collaboration platform from the Norwegian company Pexip. The product provides high quality and secure cloud conferencing capabilities. A security vulnerability exists in Pexip Infinity prior to...

7.5CVSS6.4AI score0.00364EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/12/25 12:0 a.m.4 views

PT-2025-53390

Name of the Vulnerable Software and Affected Versions Pexip Infinity versions 35.0 through 37.2 Description The software contains an improper input validation issue in the signalling component. This flaw allows an attacker to cause a software abort, leading to a denial of service. Recommendations...

7.5CVSS6.7AI score0.00268EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/12/25 12:0 a.m.7 views

PT-2025-53393

Name of the Vulnerable Software and Affected Versions Pexip Infinity versions 38.0 and 38.1 through 38.1 Description The software contains insufficient access control within its RTMP implementation. This allows an attacker to disconnect RTMP streams as they pass through a Proxy Node...

7.5CVSS6.7AI score0.00218EPSS
Exploits0References6
Rows per page
Query Builder