Vulnerabilities in wireapp
29 resultsCVE-2022-31122CRITICALWire-server vulnerable to Token Recipient Confusion resulting in account impersonation, deletion or malicious account creationEPSS 0.6%CVE-2021-32665HIGHVerified groups not reliableEPSS 0.5%CVE-2021-32755MEDIUMCertificate pinning is not enforced on the web socket connectionEPSS 0.3%CVE-2022-23605MEDIUMExpired Ephemeral Messages not reliably removed in wire-webappEPSS 0.3%CVE-2026-35049MEDIUMwire-ios has Persistent Remote DoS via Integer UnderflowEPSS 0.2%CVE-2021-41094MEDIUMMandatory encryption at rest can be bypassed (UI) in Wire appEPSS 0.2%CVE-2025-49846MEDIUMwire-ios accidentally logs message contentsEPSS 0.1%CVE-2025-48061MEDIUMwire-webapp Has Insufficient Session Invalidation after User LogoutEPSS 0.1%CVE-2025-48066MEDIUMwire-webapp has no database deletion on client logoutEPSS 0.1%