| CVE |
Vendors |
Products |
Updated |
CVSS v3.1 |
| Pexip Infinity 27.x before 27.3 allows remote attackers to trigger a software abort via the Session Initiation Protocol. |
| Pexip Infinity before 27.3 allows remote attackers to trigger a software abort via One Touch Join. |
| Pexip Infinity before 27.3 allows remote attackers to trigger a software abort, and possibly enumerate usernames, via One Touch Join. |
| Pexip Infinity 27.x before 27.3 has Improper Input Validation. The client API allows remote attackers to trigger a software abort via a gateway call into Teams. |
| Pexip Infinity before 27.3 allows remote attackers to force a software abort via HTTP. |
| Pexip Infinity 27.x before 27.2 has Improper Access Control. An attacker can sometimes join a conference (call join) if it has a lock but not a PIN. |
| Pexip Infinity before 27.0 has improper WebRTC input validation. An unauthenticated remote attacker can use excessive resources, temporarily causing denial of service. |
| Pexip Infinity before 26.2 allows temporary remote Denial of Service (abort) because of missing call-setup input validation. |
| Pexip Infinity before 26 allows temporary remote Denial of Service (abort) because of missing call-setup input validation. |
| Pexip Infinity before 26 allows remote denial of service because of missing H.264 input validation (issue 2 of 2). |
| Pexip Infinity before 26 allows remote denial of service because of missing H.264 input validation (issue 1 of 2). |
| Pexip Infinity before 26 allows remote denial of service because of missing RTMP input validation. |
| Pexip Infinity 25.x before 25.4 has Improper Input Validation, and thus an unauthenticated remote attacker can cause a denial of service via the administrative web interface. |
| Pexip Infinity Connect before 1.8.0 mishandles TLS certificate validation. The allow list is not properly checked. |
| Pexip Infinity Connect before 1.8.0 omits certain provisioning authenticity checks. Thus, untrusted code may execute. |
| Pexip Infinity 22.x through 24.x before 24.2 has Improper Input Validation for call setup. An unauthenticated remote attacker can trigger a software abort (temporary loss of service). |
| Pexip Infinity before 24.1 has Improper Input Validation, leading to temporary denial of service via SIP. |
| Pexip Infinity before 23.4 has a lack of input validation, leading to temporary denial of service via H.323. |
| Pexip Infinity 23.x before 23.3 has improper input validation, leading to a temporary software abort via RTP. |
| Pexip Reverse Proxy and TURN Server before 6.1.0 has Incorrect UDP Access Control via TURN. |
