Remote Code Execution and User Enumeration Vulnerability in Pexip Infinity

Remote Code Execution and User Enumeration Vulnerability in Pexip Infinity

CVE-2022-26656 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H

Pexip Infinity before 27.3 allows remote attackers to trigger a software abort, and possibly enumerate usernames, via One Touch Join.

Learn more about our User Device Pen Test.