Wiz
Vulnerability DatabaseCVE-2023-31289

CVE-2023-31289
Pexip Infinity Management Node vulnerability analysis and mitigation

Overview

Pexip Infinity before 31.2 has Improper Input Validation for signalling, allowing remote attackers to trigger an abort. The vulnerability was assigned CVE-2023-31289 and was disclosed on December 25, 2023. This security flaw affects all versions of Pexip Infinity prior to version 31.2 (NVD, CVE).

Technical details

The vulnerability is classified as an Improper Input Validation (CWE-20) issue. It received a CVSS v3.1 Base Score of 7.5 (HIGH) with the vector string CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H, indicating that it can be exploited remotely with low attack complexity, requires no privileges or user interaction, and primarily affects system availability (NVD).

Impact

The primary impact of this vulnerability is on system availability. When successfully exploited, the vulnerability allows remote attackers to trigger a software abort, resulting in a denial of service condition (NVD).

Mitigation and workarounds

The primary resolution for this vulnerability is to upgrade to Pexip Infinity version 31.2 or later. No alternative mitigations or workarounds have been documented (Pexip Docs).

Additional resources

SourceThis report was generated using AI

Related Pexip Infinity Management Node vulnerabilities:

CVE ID

Severity

Score

Technologies

Component name

CISA KEV exploit

Has fix

Published date

CVE-2025-59683CRITICAL9.1
  • Pexip Infinity Management NodePexip Infinity Management Node
  • cpe:2.3:a:pexip:pexip_infinity
NoYesDec 25, 2025
CVE-2025-66379HIGH7.5
  • Pexip Infinity Management NodePexip Infinity Management Node
  • cpe:2.3:a:pexip:pexip_infinity
NoYesDec 25, 2025
CVE-2025-66378HIGH7.5
  • Pexip Infinity Management NodePexip Infinity Management Node
  • cpe:2.3:a:pexip:pexip_infinity
NoYesDec 25, 2025
CVE-2025-66377HIGH7.5
  • Pexip Infinity Management NodePexip Infinity Management Node
  • cpe:2.3:a:pexip:pexip_infinity
NoYesDec 25, 2025
CVE-2025-66443MEDIUM5.3
  • Pexip Infinity Management NodePexip Infinity Management Node
  • cpe:2.3:a:pexip:pexip_infinity
NoYesDec 25, 2025

Free Vulnerability Assessment

Benchmark your Cloud Security Posture

Evaluate your cloud security practices across 9 security domains to benchmark your risk level and identify gaps in your defenses.

Request assessment

Additional Wiz resources

Cloud Vulnerability DB

Cloud Vulnerability DB

A community-led vulnerabilities database

Cloud Threat Landscape

Cloud Threat Landscape

A threat intelligence database

PEACH

PEACH

A tenant isolation framework

Get a personalized demo

Ready to see Wiz in action?

"Best User Experience I have ever seen, provides full visibility to cloud workloads."
David EstlickCISO
"Wiz provides a single pane of glass to see what is going on in our cloud environments."
Adam FletcherChief Security Officer
"We know that if Wiz identifies something as critical, it actually is."
Greg PoniatowskiHead of Threat and Vulnerability Management
Get a demo