7.5
CVE-2025-66379
- EPSS 0.32%
- Veröffentlicht 25.12.2025 00:00:00
- Zuletzt bearbeitet 05.01.2026 18:51:20
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Pexip Infinity before 39.0 has Improper Input Validation in the media implementation, allowing a remote attacker to trigger a software abort via a crafted media stream, resulting in a denial of service.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Pexip ≫ Pexip Infinity Version < 39.0
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. 
Login
Login| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.32% | 0.235 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| cve@mitre.org | 7.5 | 3.9 | 3.6 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
|
CWE-617 Reachable Assertion
The product contains an assert() or similar statement that can be triggered by an attacker, which leads to an application exit or other behavior that is more severe than necessary.
https://docs.pexip.com/admin/security_bulletins.htm