Vulnerability Details CVE-2022-25357
Pexip Infinity 27.x before 27.2 has Improper Access Control. An attacker can sometimes join a conference (call join) if it has a lock but not a PIN.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 47.4%
CVSS Severity
CVSS v3 Score 5.3
CVSS v2 Score 5.0
References
Products affected by CVE-2022-25357
-
cpe:2.3:a:pexip:pexip_infinity:27.0
-
cpe:2.3:a:pexip:pexip_infinity:27.1