Vulnerabilities > Wire > Wire > 3.19.3731
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-01-28 | CVE-2023-22737 | Missing Authorization vulnerability in Wire wire-server provides back end services for Wire, a team communication and collaboration platform. | 6.5 |
| 2022-11-18 | CVE-2022-43673 | Information Exposure Through Log Files vulnerability in Wire Wire through 3.22.3993 on Windows advertises deletion of sent messages; nonetheless, all messages can be retrieved (for a limited period of time) from the AppData\Roaming\Wire\IndexedDB\https_app.wire.com_0.indexeddb.leveldb database. | 4.7 |
| 2021-07-13 | CVE-2021-32755 | Improper Certificate Validation vulnerability in Wire Wire is a collaboration platform. | 4.0 |
| 2020-10-27 | CVE-2020-27853 | Use of Externally-Controlled Format String vulnerability in Wire products Wire before 2020-10-16 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a format string. | 7.5 |
| 2020-10-16 | CVE-2020-15258 | Improper Input Validation vulnerability in Wire In Wire before 3.20.x, `shell.openExternal` was used without checking the URL. | 6.0 |