CVE-2019-7177 – CVE-2019-7177 is a code injection vulnerability... (How to Fix)

Q: What is the severity of CVE-2019-7177?

CVE-2019-7177 has a CVSS score of 7.2 (HIGH). CVE-2019-7177 is a code injection vulnerability in Pexip Infinity that allows authenticated administrators to execute arbitrary code on nodes. This affects organizations using Pexip Infinity video conferencing solutions before version 20.1. The vulnerability requires admin-level access to exploit.

📋 TL;DR

CVE-2019-7177 is a code injection vulnerability in Pexip Infinity that allows authenticated administrators to execute arbitrary code on nodes. This affects organizations using Pexip Infinity video conferencing solutions before version 20.1. The vulnerability requires admin-level access to exploit.

💻 Affected Systems

Products:

Pexip Infinity

Versions: All versions before 20.1

Operating Systems: Linux-based Pexip Infinity appliances

Default Config Vulnerable: ⚠️ Yes

Notes: Requires admin-level access to exploit. Affects both on-premises and cloud deployments of Pexip Infinity.

📦 What is this software?

Pexip Infinity by Pexip

View all CVEs affecting Pexip Infinity →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete compromise of Pexip Infinity nodes allowing attackers to execute arbitrary code, potentially leading to data theft, service disruption, or lateral movement within the network.

🟠

Likely Case

Privileged attackers with admin access could execute malicious code to disrupt video conferencing services, steal sensitive meeting data, or maintain persistence in the environment.

🟢

If Mitigated

With proper access controls and network segmentation, impact is limited to the Pexip Infinity environment itself, though service disruption remains possible.

🌐 Internet-Facing: MEDIUM

🏢 Internal Only: HIGH

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: LOW

Exploitation requires admin credentials. The vulnerability is in the admin interface allowing code injection.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 20.1 and later

Vendor Advisory: https://docs.pexip.com/admin/security_bulletins.htm

Restart Required: Yes

Instructions:

1. Backup current configuration. 2. Upgrade Pexip Infinity to version 20.1 or later. 3. Restart services as required by the upgrade process. 4. Verify functionality post-upgrade.

🔧 Temporary Workarounds

Restrict Admin Access

all

Limit administrative access to only trusted personnel and implement strong authentication controls.

Network Segmentation

all

Isolate Pexip Infinity management interfaces from general network access.

🧯 If You Can't Patch

Implement strict access controls and monitoring for admin accounts
Segment Pexip Infinity management interfaces and implement network-level restrictions

🔍 How to Verify

Check if Vulnerable:

Check Pexip Infinity version via admin interface or SSH. Versions before 20.1 are vulnerable.

Check Version:

pexip --version

Verify Fix Applied:

Verify version is 20.1 or later via admin interface or SSH command 'pexip --version'.

📡 Detection & Monitoring

Log Indicators:

Unusual admin activity patterns
Unexpected code execution attempts in system logs
Multiple failed admin login attempts

Network Indicators:

Unusual outbound connections from Pexip nodes
Suspicious traffic to/from management interfaces

SIEM Query:

source="pexip" AND (event_type="admin_action" OR event_type="code_execution")

📊 Metadata

CVE ID: CVE-2019-7177

CVSS v3 Score: 7.2 (HIGH)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-94

Published: September 25, 2020

Last Updated: November 21, 2024

🔗 References

https://docs.pexip.com/admin/release_notes.htm Vendor Advisory
https://docs.pexip.com/admin/security_bulletins.htm Vendor Advisory
https://docs.pexip.com/admin/release_notes.htm Vendor Advisory
https://docs.pexip.com/admin/security_bulletins.htm Vendor Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2019-7177, you might also want to check these: