Vulnerabilities > Wire

DATE CVE VULNERABILITY TITLE RISK
2021-06-03 CVE-2021-32666 Improper Input Validation vulnerability in Wire
wire-ios is the iOS version of Wire, an open-source secure messaging app.
network
low complexity
wire CWE-20
4.0
2021-06-03 CVE-2021-32665 Insufficient Verification of Data Authenticity vulnerability in Wire
wire-ios is the iOS version of Wire, an open-source secure messaging app.
network
low complexity
wire CWE-345
5.0
2021-04-02 CVE-2021-21400 Information Exposure vulnerability in Wire Wire-Webapp
wire-webapp is an open-source front end for Wire, a secure collaboration platform.
network
wire CWE-200
4.3
2021-03-26 CVE-2021-21396 Information Exposure vulnerability in Wire Server 20210216/20210225
wire-server is an open-source back end for Wire, a secure collaboration platform.
network
low complexity
wire CWE-200
4.0
2021-02-11 CVE-2021-21301 Information Exposure vulnerability in Wire
Wire is an open-source collaboration platform.
network
wire CWE-200
4.3
2020-10-27 CVE-2020-27853 Use of Externally-Controlled Format String vulnerability in Wire products
Wire before 2020-10-16 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a format string.
network
low complexity
wire CWE-134
7.5
2020-10-16 CVE-2020-15258 Improper Input Validation vulnerability in Wire
In Wire before 3.20.x, `shell.openExternal` was used without checking the URL.
network
wire CWE-20
6.0
2018-03-22 CVE-2018-8909 Path Traversal vulnerability in Wire
The Wire application before 2018-03-07 for Android allows attackers to write to pathnames outside of the downloads directory via a ../ in a filename of a received file, related to AssetService.scala.
network
low complexity
wire CWE-22
5.0