Search Results | AttackerKB

43 Total Results

Displaying 1-10 of 43

Attacker Value

Unknown

CVE-2023-40236

Disclosure Date: December 25, 2023 (last updated December 30, 2023)

In Pexip VMR self-service portal before 3, the same SSH host key is used across different customers' installations, which allows authentication bypass.

Attacker Value

Unknown

CVE-2023-37225

Disclosure Date: December 25, 2023 (last updated December 30, 2023)

Pexip Infinity before 32 allows Webapp1 XSS via preconfigured links.

Attack Vector: Network Privileges: None User Interaction: Required

Attacker Value

Unknown

CVE-2023-31455

Disclosure Date: December 25, 2023 (last updated December 30, 2023)

Pexip Infinity before 31.2 has Improper Input Validation for RTCP, allowing remote attackers to trigger an abort.

Attack Vector: Network Privileges: None User Interaction: None

Attacker Value

Unknown

CVE-2023-31289

Disclosure Date: December 25, 2023 (last updated December 30, 2023)

Pexip Infinity before 31.2 has Improper Input Validation for signalling, allowing remote attackers to trigger an abort.

Attack Vector: Network Privileges: None User Interaction: None

Attacker Value

Unknown

CVE-2022-32263

Disclosure Date: July 17, 2022 (last updated October 07, 2023)

Pexip Infinity before 28.1 allows remote attackers to trigger a software abort via G.719.

Attack Vector: Network Privileges: None User Interaction: None

Attacker Value

Unknown

CVE-2022-29286

Disclosure Date: July 17, 2022 (last updated October 07, 2023)

Pexip Infinity 27 before 28.0 allows remote attackers to trigger excessive resource consumption and termination because of registrar resource mishandling.

Attack Vector: Network Privileges: None User Interaction: None