CVE-2023-31455

Pexip Infinity before 31.2 has Improper Input Validation for RTCP, allowing remote attackers to trigger an abort...

CVE-2023-31289

Pexip Infinity before 31.2 has Improper Input Validation for signalling, allowing remote attackers to trigger an abort...

CVE-2023-40236

In Pexip VMR self-service portal before 3, the same SSH host key is used across different customers' installations, which allows authentication bypass...

CVE-2018-10432

Pexip Infinity before 18 allows Remote Denial of Service TLS handshakes in RTMP...

CVE-2018-10585

Pexip Infinity before 18 allows remote Denial of Service XML parsing...

CVE-2021-33499

Pexip Infinity before 26 allows remote denial of service because of missing H.264 input validation issue 2 of 2...

CVE-2021-31925

Pexip Infinity 25.x before 25.4 has Improper Input Validation, and thus an unauthenticated remote attacker can cause a denial of service via the administrative web interface...

CVE-2022-26654

Pexip Infinity before 27.3 allows remote attackers to force a software abort via HTTP...

CVE-2022-26655

Pexip Infinity 27.x before 27.3 has Improper Input Validation. The client API allows remote attackers to trigger a software abort via a gateway call into Teams...

CVE-2020-12824

Pexip Infinity 23.x before 23.3 has improper input validation, leading to a temporary software abort via RTP...

CVE-2020-24615

Pexip Infinity before 24.1 has Improper Input Validation, leading to temporary denial of service via SIP...

CVE-2022-27932

Pexip Infinity before 27.3 allows remote attackers to trigger a software abort via One Touch Join...

CVE-2022-27936

Pexip Infinity before 27.3 allows remote attackers to trigger a software abort via H.323...

CVE-2022-27933

Pexip Infinity before 27.3 allows remote attackers to trigger a software abort via One Touch Join...

CVE-2022-27937

Pexip Infinity before 27.3 allows remote attackers to trigger excessive resource consumption via H.264...

CVE-2022-27928

Pexip Infinity 27.x before 27.3 allows remote attackers to trigger a software abort via the Session Initiation Protocol...

CVE-2019-7178

Pexip Infinity before 20.1 allows privilege escalation by restoring a system backup...

CVE-2019-7177

Pexip Infinity before 20.1 allows Code Injection onto nodes via an admin...

EUVD-2025-205523

Malicious code in eslint-config-pexip-engage npm...

MAL-2025-192955 Malicious code in eslint-config-pexip-engage (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2f2ae2981daf16023f28b58d952a770dc6ec7060333721b5eeca90a6b05f6d56 The package eslint-config-pexip-engage was found to contain malicious code. Source: ossf-package-analysis...