Software Abort Vulnerability in Pexip Infinity by Pexip
CVE-2022-27935

7.5HIGH

Key Information:

Vendor: Pexip
Status: Pexip Infinity
Vendor: CVE Published:; 17 July 2022

What is CVE-2022-27935?

A vulnerability in specific versions of Pexip Infinity allows remote attackers to exploit the system by triggering a software abort when interacting with Epic Telehealth services, potentially leading to service disruptions and unauthorized access.

References

https://docs.pexip.com/admin/security_bulletins.htm#CVE-2...

x_refsource_MISC

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 17, 2022
Vulnerability Reserved
Mar 26, 2022

JSON