Vulnerability Details CVE-2020-25868
Pexip Infinity 22.x through 24.x before 24.2 has Improper Input Validation for call setup. An unauthenticated remote attacker can trigger a software abort (temporary loss of service).
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 64.5%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
Products affected by CVE-2020-25868
-
cpe:2.3:a:pexip:pexip_infinity:22.1
-
cpe:2.3:a:pexip:pexip_infinity:22.2
-
cpe:2.3:a:pexip:pexip_infinity:22.3
-
cpe:2.3:a:pexip:pexip_infinity:23
-
cpe:2.3:a:pexip:pexip_infinity:23.1
-
cpe:2.3:a:pexip:pexip_infinity:23.2
-
cpe:2.3:a:pexip:pexip_infinity:23.3
-
cpe:2.3:a:pexip:pexip_infinity:23.4
-
cpe:2.3:a:pexip:pexip_infinity:24.1