Vulnerabilities > Tencent > Wechat
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-07-26 | CVE-2021-40180 | Information Exposure vulnerability in Tencent Wechat 8.0.10 In the WeChat application 8.0.10 for Android and iOS, a mini program can obtain sensitive information from a user's address book via wx.searchContacts. | 7.5 |
| 2021-04-14 | CVE-2021-27247 | Out-of-bounds Read vulnerability in Tencent Wechat 2.9.5 This vulnerability allows remote attackers to disclose sensitive information on affected installations of Tencent WeChat 2.9.5 desktop version. | 6.5 |
| 2021-02-10 | CVE-2020-27874 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Tencent Wechat 7.0.18 This vulnerability allows remote attackers to execute arbitrary code on affected installations of Tencent WeChat 7.0.18. | 8.8 |
| 2020-01-07 | CVE-2019-17151 | Open Redirect vulnerability in Tencent Wechat This vulnerability allows remote attackers redirect users to an external resource on affected installations of Tencent WeChat Prior to 7.0.9. | 5.4 |
| 2019-05-14 | CVE-2019-11419 | NULL Pointer Dereference vulnerability in Tencent Wechat vcodec2_hls_filter in libvoipCodec_v7a.so in the WeChat application through 7.0.3 for Android allows attackers to cause a denial of service (application crash) by replacing an emoji file (under the /sdcard/tencent/MicroMsg directory) with a crafted .wxgf file. | 5.5 |