CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-49088

Pexip Infinity 32.0 through 37.1 before 37.2, in certain configurations of OTJ (One Touch Join) for Teams SIP Guest Join, has Improper Input Validation in the OTJ service, allowing a remote attacker to trigger a software abort via a crafted calendar invite, leading to a denial of service.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 34.5%

CVSS Severity

CVSS v3 Score 5.9

References

https://docs.pexip.com/admin/security_bulletins.htm

Products affected by CVE-2025-49088

Pexip » Pexip Infinity » Version: 32.0

cpe:2.3:a:pexip:pexip_infinity:32.0
Pexip » Pexip Infinity » Version: 33.0

cpe:2.3:a:pexip:pexip_infinity:33.0
Pexip » Pexip Infinity » Version: 34.0

cpe:2.3:a:pexip:pexip_infinity:34.0
Pexip » Pexip Infinity » Version: 34.1

cpe:2.3:a:pexip:pexip_infinity:34.1
Pexip » Pexip Infinity » Version: 34.2

cpe:2.3:a:pexip:pexip_infinity:34.2
Pexip » Pexip Infinity » Version: 35.0

cpe:2.3:a:pexip:pexip_infinity:35.0
Pexip » Pexip Infinity » Version: 35.1

cpe:2.3:a:pexip:pexip_infinity:35.1
Pexip » Pexip Infinity » Version: 36.0

cpe:2.3:a:pexip:pexip_infinity:36.0
Pexip » Pexip Infinity » Version: 36.1

cpe:2.3:a:pexip:pexip_infinity:36.1
Pexip » Pexip Infinity » Version: 36.2

cpe:2.3:a:pexip:pexip_infinity:36.2
Pexip » Pexip Infinity » Version: 37.0

cpe:2.3:a:pexip:pexip_infinity:37.0
Pexip » Pexip Infinity » Version: 37.1

cpe:2.3:a:pexip:pexip_infinity:37.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-49088

Products

Pricing

Contact Us