Primary

Context

Pexip Infinity RTMP Stream Disconnection Vulnerability

Vulnerability

Patched

A vulnerability in Pexip Infinity versions 38.0 and 38.1 prior to 39.0 allows for improper access control in the Real-Time Messaging Protocol (RTMP) implementation. This flaw enables an attacker to disconnect RTMP streams that are passing through a Proxy Node. RTMP is utilized to stream conference media to external recording systems.

Impact

Exploitation of this vulnerability disrupts RTMP streams, causing disconnections that can interrupt media recordings or broadcasts.

Remediation

Users can upgrade to Pexip Infinity version 39.0 to address this vulnerability. If RTMP streaming is not needed, support for RTMP can be disabled in the Global Settings under Connectivity.

Added: Dec 25, 2025, 5:18 AM

Updated: Dec 25, 2025, 5:18 AM

Vulnerability Rating

Custom Algorithm

spread

2.2

impact

2.5

exploitability

7.6

remediation

7.9

relevance

1.6

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.2

impact

2.5

exploitability

7.6

remediation

7.9

relevance

1.6

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Pexip Infinity RTMP Stream Disconnection Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Pexip Infinity

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating