CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0CVE-2017-17477
https://notcve.org/view.php?id=CVE-2017-17477
Pexip Infinity before 17 allows an unauthenticated remote attacker to achieve stored XSS via management web interface views. Pexip Infinity versiones anteriores a 17, permite a un atacante remoto no autenticado lograr un ataque de tipo XSS almacenado por medio de unas vistas de la interfaz web de administración • https://docs.pexip.com/admin/security_bulletins.htm https://www.pexip.com/security-bulletins • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 9.0EPSS: 0%CPEs: 1EXPL: 0CVE-2019-7178
https://notcve.org/view.php?id=CVE-2019-7178
Pexip Infinity before 20.1 allows privilege escalation by restoring a system backup. una copia de seguridad del sistema en Pexip Infinity. (CVE-2019-7178) • https://docs.pexip.com/admin/release_notes.htm https://docs.pexip.com/admin/security_bulletins.htm • CWE-20: Improper Input Validation •
CVSS: 9.0EPSS: 0%CPEs: 1EXPL: 0CVE-2019-7177
https://notcve.org/view.php?id=CVE-2019-7177
Pexip Infinity before 20.1 allows Code Injection onto nodes via an admin. Pexip Infinity versiones anteriores a 20.1, permite una Inyección de Código en unos nodos por medio de un administrador • https://docs.pexip.com/admin/release_notes.htm https://docs.pexip.com/admin/security_bulletins.htm • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2018-10585
https://notcve.org/view.php?id=CVE-2018-10585
Pexip Infinity before 18 allows remote Denial of Service (XML parsing). Pexip Infinity versiones anteriores a 18, permite una Denegación de Servicio remota (análisis XML) • https://docs.pexip.com/admin/security_bulletins.htm https://docs.pexip.com/admin/whats_new.htm • CWE-400: Uncontrolled Resource Consumption •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2018-10432
https://notcve.org/view.php?id=CVE-2018-10432
Pexip Infinity before 18 allows Remote Denial of Service (TLS handshakes in RTMP). Pexip Infinity versiones anteriores a 18, permite una Denegación de Servicio Remota (protocolos de enlace TLS en RTMP) • https://docs.pexip.com/admin/security_bulletins.htm https://docs.pexip.com/admin/whats_new.htm • CWE-400: Uncontrolled Resource Consumption •