PT-2022-17989 · Pexip · Pexip Infinity

Published

2022-07-17

Updated

2022-07-18

CVE-2022-26656

CVSS v3.1

8.2

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H

Name of the Vulnerable Software and Affected Versions Pexip Infinity versions prior to 27.3

Description The issue allows remote attackers to trigger a software abort and possibly enumerate usernames via One Touch Join.

Recommendations For versions prior to 27.3, update to version 27.3 or later to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

CVE-2022-26656

Pexip Infinity