Wireapp Wire-server
7 CVEs affecting Wireapp Wire-server. Latest disclosed: 2023-01-27. Critical: 2, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2022-31122 | Critical | 9.8 | 2022-10-18 | Wire is an encrypted communication and collaboration platform. Versions prior to 2022-07-12/Chart 4.19.0 are subject to Token Recipient Confusion. If an attack… |
CVE-2022-23610 | Critical | 9.1 | 2022-03-16 | wire-server provides back end services for Wire, an open source messenger. In versions of wire-server prior to the 2022-01-27 release, it was possible to craft… |
CVE-2021-41100 | High | 7.4 | 2021-10-04 | Wire-server is the backing server for the open source wire secure messaging application. In affected versions it is possible to trigger email address change of… |
CVE-2023-22737 | Medium | 6.5 | 2023-01-27 | wire-server provides back end services for Wire, a team communication and collaboration platform. Prior to version 2022-12-09, every member of a Conversation c… |
CVE-2021-21396 | Medium | 6.5 | 2021-03-26 | wire-server is an open-source back end for Wire, a secure collaboration platform. In wire-server from version 2021-02-16 and before version 2021-03-02, the cli… |
CVE-2021-41101 | Medium | 5.7 | 2021-09-30 | wire-server is an open-source back end for Wire, a secure collaboration platform. Before version 2.106.0, the CORS ` Access-Control-Allow-Origin ` header set b… |
CVE-2021-41119 | Medium | 5.3 | 2022-04-13 | Wire-server is the system server for the wire back-end services. Releases prior to v2022-03-01 are subject to a denial of service attack via a crafted object c… |