Primary

Context

Pexip Infinity Denial-of-Service Vulnerability via Improper Input Validation in Signaling

Vulnerability

Patched

A denial-of-service vulnerability has been identified in Pexip Infinity versions 33.0 through 37.0 prior to 37.1. The issue arises from improper input validation in the signaling implementation, which allows an attacker to trigger a software abort, causing a temporary denial of service. Exploitation involves sending a crafted signaling message that interrupts normal application processing.

Impact

Exploitation of this vulnerability leads to a software abort, causing a temporary denial-of-service condition on the affected system.

Remediation

Users can upgrade to Pexip Infinity version 37.1 to address this vulnerability.

Added: Dec 25, 2025, 5:21 AM

Updated: Dec 25, 2025, 5:21 AM

Vulnerability Rating

Custom Algorithm

spread

2.2

impact

2.5

exploitability

7.6

remediation

7.7

relevance

1.7

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.2

impact

2.5

exploitability

7.6

remediation

7.7

relevance

1.7

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Pexip Infinity Denial-of-Service Vulnerability via Improper Input Validation in Signaling

Vulnerability

Impact

Remediation

Affected Products

Pexip Infinity

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating