Vulnerabilities > Signal > High

DATE CVE VULNERABILITY TITLE RISK
2023-01-23 CVE-2023-24068 Unspecified vulnerability in Signal Signal-Desktop
Signal Desktop before 6.2.0 on Windows, Linux, and macOS allows an attacker to modify conversation attachments within the attachments.noindex directory.
local
low complexity
signal
7.8
2018-08-29 CVE-2018-16132 Resource Exhaustion vulnerability in Signal
The image rendering component (createGenericPreview) of the Open Whisper Signal app through 2.29.0 for iOS fails to check for unreasonably large images before manipulating received images.
network
low complexity
signal CWE-400
7.8