Wireapp Wire-webapp
8 CVEs affecting Wireapp Wire-webapp. Latest disclosed: 2025-05-22. Critical: 2, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2022-29168 | Critical | 9.6 | 2022-06-25 | Wire is a secure messaging application. Wire is vulnerable to arbitrary HTML and Javascript execution via insufficient escaping when rendering `@mentions` in t… |
CVE-2022-24799 | Critical | 9.6 | 2022-04-20 | wire-webapp is the web application interface for the wire messaging service. Insufficient escaping in markdown “code highlighting” in the wire-webapp resulted… |
CVE-2021-32683 | High | 8.8 | 2021-06-15 | wire-webapp is the web version of Wire, an open-source messenger. A cross-site scripting vulnerability exists in wire-webapp prior to version 2021-06-01-produc… |
CVE-2021-21400 | High | 7.1 | 2021-04-02 | wire-webapp is an open-source front end for Wire, a secure collaboration platform. In wire-webapp before version 2021-03-15-production.0, when being prompted t… |
CVE-2025-48066 | Medium | 6.0 | 2025-05-22 | wire-webapp is the web application for the open-source messaging service Wire. A bug fix caused a regression causing an issue with function to delete local dat… |
CVE-2025-48061 | Medium | 5.6 | 2025-05-22 | wire-webapp is the web application for the open-source messaging service Wire. A change caused a regression resulting in sessions not being properly invalidate… |
CVE-2022-39380 | Medium | 5.3 | 2023-01-27 | Wire web-app is part of Wire communications. Versions prior to 2022-11-02 are subject to Improper Handling of Exceptional Conditions. In the wire-webapp, certa… |
CVE-2022-23605 | Medium | 4.4 | 2022-02-04 | Wire webapp is a web client for the wire messaging protocol. In versions prior to 2022-01-27-production.0 expired ephemeral messages were not reliably removed… |