How severe is CVE-2023-40236?

CVE-2023-40236 has a CVSS v3 score of 5.3 (MEDIUM).

CVE-2023-40236

Name: virtual_meeting_rooms
Author: pexip

5.3MEDIUM

In Pexip VMR self-service portal before 3, the same SSH host key is used across different customers' installations, which allows authentication bypass.

Published: 12/25/2023Updated: 4/23/2025

Description

In Pexip VMR self-service portal before 3, the same SSH host key is used across different customers' installations, which allows authentication bypass.

AI AnalysisPowered by AI

Affected Products

pexipvirtual_meeting_rooms

References

https://docs.pexip.com/admin/security_bulletins.htm
Vendor Advisory
https://docs.pexip.com/admin/security_bulletins.htm
Vendor Advisory