Information disclosure in Wireapp Wire-ios

CVE-2025-49846

wire-ios is an iOS client for the Wire secure messaging application. From Wire iOS 3.111.1 to before 3.124.1, messages that were visible in the view port have been logged to the iOS system logs in clear text. Wire application logs created…

EPSS: 0.001 (25.9th percentile) — read the EPSS interpretation.

Affected products

Wireapp Wire-ios — versions >= 3.111.1, < 3.124.1

Weakness classification (CWE)

References

https://github.com/wireapp/wire-ios/security/advisories/GHSA-pj5p-96xx-hc7m (x_refsource_CONFIRM)
https://github.com/wireapp/wire-ios/commit/0cff0e4298d87c2c56de07f3fb18d3e8e5a68fa3 (x_refsource_MISC)
https://github.com/wireapp/wire-ios/releases/tag/appstore%2F3.124.1 (x_refsource_MISC)