CVE-2023-31455
CVSS 3.1 Score 7.5 of 10 (high)
Details
Published Dec 25, 2023
Updated: Dec 29, 2023
CWE ID 20
Summary
CVE-2023-31455 is a vulnerability affecting Pexip Infinity versions prior to 31.2. It involves improper input validation for Real-time Transport Control Protocol (RTCP), allowing remote attackers to trigger an abort. This issue could potentially lead to denial-of-service conditions or more serious consequences if exploited further. Attackers may send malicious RTCP packets to target systems, causing unintended terminations or crashes. System administrators are advised to upgrade to the latest version of Pexip Infinity to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Pexip Infinity
Affected Vendors
- Pexip