CVE-2023-31455

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Dec 25, 2023
Updated: Dec 29, 2023
CWE ID 20

Summary

CVE-2023-31455 is a vulnerability affecting Pexip Infinity versions prior to 31.2. It involves improper input validation for Real-time Transport Control Protocol (RTCP), allowing remote attackers to trigger an abort. This issue could potentially lead to denial-of-service conditions or more serious consequences if exploited further. Attackers may send malicious RTCP packets to target systems, causing unintended terminations or crashes. System administrators are advised to upgrade to the latest version of Pexip Infinity to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share