Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
pexip pexip infinity vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2020-11805
Pexip Reverse Proxy and TURN Server prior to 6.1.0 has Incorrect UDP Access Control via TURN.
Pexip Reverse Proxy And Turn Server 6.0.7
Pexip Reverse Proxy And Turn Server 6.0.10
Pexip Pexip Infinity 23.1
Pexip Pexip Infinity 23
9
CVSSv2
CVE-2019-7177
Pexip Infinity prior to 20.1 allows Code Injection onto nodes via an admin.
Pexip Pexip Infinity
9
CVSSv2
CVE-2019-7178
Pexip Infinity prior to 20.1 allows privilege escalation by restoring a system backup.
Pexip Pexip Infinity
7.8
CVSSv2
CVE-2018-10432
Pexip Infinity prior to 18 allows Remote Denial of Service (TLS handshakes in RTMP).
Pexip Pexip Infinity
7.8
CVSSv2
CVE-2018-10585
Pexip Infinity prior to 18 allows remote Denial of Service (XML parsing).
Pexip Pexip Infinity
7.5
CVSSv2
CVE-2021-29655
Pexip Infinity Connect prior to 1.8.0 omits certain provisioning authenticity checks. Thus, untrusted code may execute.
Pexip Infinity Connect
7.5
CVSSv2
CVE-2021-29656
Pexip Infinity Connect prior to 1.8.0 mishandles TLS certificate validation. The allow list is not properly checked.
Pexip Infinity Connect
7.5
CVSSv2
CVE-2015-4719
The client API authentication mechanism in Pexip Infinity prior to 10 allows remote malicious users to gain privileges via a crafted request.
Pexip Pexip Infinity
7.5
CVSSv2
CVE-2017-6551
Pexip Infinity prior to 14.2 allows remote malicious users to cause a denial of service (service restart) or execute arbitrary code via vectors related to Conferencing Nodes.
Pexip Pexip Infinity
7.1
CVSSv2
CVE-2014-8779
Pexip Infinity prior to 8 uses the same SSH host keys across different customers' installations, which allows man-in-the-middle malicious users to spoof Management and Conferencing Nodes by leveraging these keys.
Pexip Pexip Infinity
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-28995
CVE-2024-36680
CVE-2024-35537
unauthorized
CVE-2024-21518
CVE-2024-37673
cross-site scripting
SSRF
CVE-2024-6241
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »