Improper Input Validation in Pexip Infinity 27.x before 27.3 Allows Remote Software Abort via Teams Gateway Call

Improper Input Validation in Pexip Infinity 27.x before 27.3 Allows Remote Software Abort via Teams Gateway Call

CVE-2022-26655 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Pexip Infinity 27.x before 27.3 has Improper Input Validation. The client API allows remote attackers to trigger a software abort via a gateway call into Teams.

Learn more about our Api Penetration Testing.