Input Validation Flaw in Pexip Infinity Affects Video Conferencing Solutions
CVE-2020-13387

7.5HIGH

Key Information:

Vendor

Pexip

Status
Pexip Infinity
Vendor
CVE Published:
25 September 2020

What is CVE-2020-13387?

Pexip Infinity versions before 23.4 are susceptible to a vulnerability that arises from a lack of proper input validation, potentially enabling temporary denial of service attacks through H.323 protocols. This flaw may allow attackers to disrupt service availability, affecting users relying on this video conferencing solution for communication. It is crucial for users of affected versions to update their systems to mitigate the risks associated with this vulnerability.

References

https://www.pexip.com
x_refsource_MISC
https://docs.pexip.com/admin/security_bulletins.htm
x_refsource_CONFIRM

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.
CVE-2020-13387 : Input Validation Flaw in Pexip Infinity Affects Video Conferencing Solutions