Vulnerabilidades em wireapp
29 resultadosCVE-2021-41193CRITICALUse of Externally-Controlled Format String in wire-avsEPSS 2.3%CVE-2020-15258HIGHInsecure use of shell.openExternal in WireEPSS 2.0%CVE-2021-41119MEDIUMDoS vulnerabiliity in wire-server json parserEPSS 1.5%CVE-2021-21382HIGHUnsafe loopback forwarding interface in RestundEPSS 1.5%CVE-2021-41093HIGHAccount takeover when having only access to a user's short lived tokenEPSS 1.4%CVE-2022-23625MEDIUMDoS vulnerability: Malformed Resource IdentifiersEPSS 1.2%CVE-2021-21400HIGHEntering code in App Lock modal sends input to conversationEPSS 1.1%CVE-2021-21396MEDIUMBulk list client endpoint exposes too much metadata about a clientEPSS 1.1%CVE-2021-41100HIGHAccount takeover when having only access to a user's short lived token in wire-serverEPSS 1.0%CVE-2022-24799CRITICALCross Site Scripting in Wire WebappEPSS 0.9%CVE-2021-32666MEDIUMAsset DoS vulnerabilityEPSS 0.9%CVE-2021-21301LOWVideo feed was captured while user has disabled videoEPSS 0.9%CVE-2023-48221HIGHwire-avs remote format string vulnerability EPSS 0.9%CVE-2021-32683HIGHXSS through createObjectURLEPSS 0.8%CVE-2022-29168CRITICALCross Site Scripting in Wire MessagesEPSS 0.8%CVE-2023-22737MEDIUMwire-server vulnerable to unauthorized removal of Bots from ConversationsEPSS 0.7%CVE-2021-41101MEDIUMCORS `Access-Control-Allow-Origin` settings are too lenientEPSS 0.7%CVE-2022-23610CRITICALImproper Verification of Cryptographic Signature in wire-serverEPSS 0.7%CVE-2022-39380MEDIUMwire-webapp contains Improper Handling of Exceptional Conditions leading to a DoS via Markdown RenderingEPSS 0.6%CVE-2022-31009MEDIUMDoS vulnerability: Invalid Accent ColorsEPSS 0.6%