Skip to main content

Wire

14 CVEs product

Monthly

CVE-2023-22737 MEDIUM PATCH This Month

wire-server provides back end services for Wire, a team communication and collaboration platform. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Wire
NVD GitHub
CVSS 3.1
6.5
EPSS
0.7%
CVE-2022-43673 MEDIUM POC This Month

Wire through 3.22.3993 on Windows advertises deletion of sent messages; nonetheless, all messages can be retrieved (for a limited period of time) from the. Rated medium severity (CVSS 4.7). Public exploit code available and no vendor patch available.

Information Disclosure Microsoft Wire
NVD
CVSS 3.1
4.7
EPSS
0.3%
CVE-2022-31009 MEDIUM PATCH This Month

wire-ios is an iOS client for the Wire secure messaging application. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

Denial Of Service Apple Wire
NVD GitHub
CVSS 3.1
6.5
EPSS
0.6%
CVE-2022-23625 MEDIUM PATCH This Month

Wire-ios is a messaging application using the wire protocol on apple's ios platform. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

Denial Of Service Apple Wire Wire Ios Transport
NVD GitHub
CVSS 3.1
6.5
EPSS
1.2%
CVE-2021-41094 MEDIUM PATCH This Month

Wire is an open source secure messenger. Rated medium severity (CVSS 4.6), this vulnerability is no authentication required, low attack complexity. This Exposure of Resource to Wrong Sphere vulnerability could allow attackers to access resources from an unintended security context.

Information Disclosure Wire
NVD GitHub
CVSS 3.1
4.6
EPSS
0.2%
CVE-2021-41093 CRITICAL PATCH Act Now

Wire is an open source secure messenger. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Authentication Bypass Wire
NVD GitHub
CVSS 3.1
9.8
EPSS
1.4%
CVE-2021-32755 MEDIUM This Month

Wire is a collaboration platform. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Apple Information Disclosure Wire
NVD GitHub
CVSS 3.1
4.3
EPSS
0.3%
CVE-2021-32666 MEDIUM PATCH This Month

wire-ios is the iOS version of Wire, an open-source secure messaging app. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

Apple Denial Of Service Wire
NVD GitHub
CVSS 3.1
6.5
EPSS
0.9%
CVE-2021-32665 MEDIUM PATCH This Month

wire-ios is the iOS version of Wire, an open-source secure messaging app. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

Apple Information Disclosure Wire
NVD GitHub
CVSS 3.1
6.5
EPSS
0.5%
CVE-2021-29508 NuGet CRITICAL POC Act Now

Due to how Wire handles type information in its serialization format, malicious payloads can be passed to a deserializer. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Deserialization Microsoft Wire
NVD GitHub
CVSS 3.1
9.1
EPSS
1.6%
CVE-2021-21301 MEDIUM PATCH This Month

Wire is an open-source collaboration platform. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Apple Information Disclosure Wire
NVD GitHub
CVSS 3.1
4.3
EPSS
0.9%
CVE-2020-27853 CRITICAL POC Act Now

Wire before 2020-10-16 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a format string. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Google RCE Denial Of Service Wire Wire Audio Video And Signaling +1
NVD GitHub
CVSS 3.1
9.8
EPSS
3.8%
CVE-2020-15258 HIGH POC PATCH This Week

In Wire before 3.20.x, `shell.openExternal` was used without checking the URL. Rated high severity (CVSS 8.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

RCE Wire
NVD GitHub
CVSS 3.1
8.0
EPSS
2.1%
CVE-2018-8909 HIGH POC This Week

The Wire application before 2018-03-07 for Android allows attackers to write to pathnames outside of the downloads directory via a ../ in a filename of a received file, related to AssetService.scala. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Google Path Traversal Wire
NVD
CVSS 3.0
7.5
EPSS
2.0%
EPSS 1% CVSS 6.5
MEDIUM PATCH This Month

wire-server provides back end services for Wire, a team communication and collaboration platform. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Wire
NVD GitHub
EPSS 0% CVSS 4.7
MEDIUM POC This Month

Wire through 3.22.3993 on Windows advertises deletion of sent messages; nonetheless, all messages can be retrieved (for a limited period of time) from the. Rated medium severity (CVSS 4.7). Public exploit code available and no vendor patch available.

Information Disclosure Microsoft Wire
NVD
EPSS 1% CVSS 6.5
MEDIUM PATCH This Month

wire-ios is an iOS client for the Wire secure messaging application. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

Denial Of Service Apple Wire
NVD GitHub
EPSS 1% CVSS 6.5
MEDIUM PATCH This Month

Wire-ios is a messaging application using the wire protocol on apple's ios platform. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

Denial Of Service Apple Wire +1
NVD GitHub
EPSS 0% CVSS 4.6
MEDIUM PATCH This Month

Wire is an open source secure messenger. Rated medium severity (CVSS 4.6), this vulnerability is no authentication required, low attack complexity. This Exposure of Resource to Wrong Sphere vulnerability could allow attackers to access resources from an unintended security context.

Information Disclosure Wire
NVD GitHub
EPSS 1% CVSS 9.8
CRITICAL PATCH Act Now

Wire is an open source secure messenger. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Authentication Bypass Wire
NVD GitHub
EPSS 0% CVSS 4.3
MEDIUM This Month

Wire is a collaboration platform. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Apple Information Disclosure Wire
NVD GitHub
EPSS 1% CVSS 6.5
MEDIUM PATCH This Month

wire-ios is the iOS version of Wire, an open-source secure messaging app. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

Apple Denial Of Service Wire
NVD GitHub
EPSS 0% CVSS 6.5
MEDIUM PATCH This Month

wire-ios is the iOS version of Wire, an open-source secure messaging app. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

Apple Information Disclosure Wire
NVD GitHub
EPSS 2% CVSS 9.1
CRITICAL POC Act Now

Due to how Wire handles type information in its serialization format, malicious payloads can be passed to a deserializer. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Deserialization Microsoft Wire
NVD GitHub
EPSS 1% CVSS 4.3
MEDIUM PATCH This Month

Wire is an open-source collaboration platform. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Apple Information Disclosure Wire
NVD GitHub
EPSS 4% CVSS 9.8
CRITICAL POC Act Now

Wire before 2020-10-16 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a format string. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Google RCE Denial Of Service +3
NVD GitHub
EPSS 2% CVSS 8.0
HIGH POC PATCH This Week

In Wire before 3.20.x, `shell.openExternal` was used without checking the URL. Rated high severity (CVSS 8.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

RCE Wire
NVD GitHub
EPSS 2% CVSS 7.5
HIGH POC This Week

The Wire application before 2018-03-07 for Android allows attackers to write to pathnames outside of the downloads directory via a ../ in a filename of a received file, related to AssetService.scala. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Google Path Traversal Wire
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy