CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-66443

Pexip Infinity 35.0 through 38.1 before 39.0, in non-default configurations that use Direct Media for WebRTC, has Improper Input Validation in signalling that allows an attacker to trigger a software abort, resulting in a temporary denial of service.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 17.5%

CVSS Severity

CVSS v3 Score 7.5

References

https://docs.pexip.com/admin/security_bulletins.htm

Products affected by CVE-2025-66443

Pexip » Pexip Infinity » Version: 35.0

cpe:2.3:a:pexip:pexip_infinity:35.0
Pexip » Pexip Infinity » Version: 35.1

cpe:2.3:a:pexip:pexip_infinity:35.1
Pexip » Pexip Infinity » Version: 36.0

cpe:2.3:a:pexip:pexip_infinity:36.0
Pexip » Pexip Infinity » Version: 36.1

cpe:2.3:a:pexip:pexip_infinity:36.1
Pexip » Pexip Infinity » Version: 36.2

cpe:2.3:a:pexip:pexip_infinity:36.2
Pexip » Pexip Infinity » Version: 37.0

cpe:2.3:a:pexip:pexip_infinity:37.0
Pexip » Pexip Infinity » Version: 37.1

cpe:2.3:a:pexip:pexip_infinity:37.1
Pexip » Pexip Infinity » Version: 37.2

cpe:2.3:a:pexip:pexip_infinity:37.2
Pexip » Pexip Infinity » Version: 38.0

cpe:2.3:a:pexip:pexip_infinity:38.0
Pexip » Pexip Infinity » Version: 38.1

cpe:2.3:a:pexip:pexip_infinity:38.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-66443

Products

Pricing

Contact Us