Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
alpinelinuxAlpine Linux Development TeamALPINE:CVE-2022-23625
HistoryMar 11, 2022 - 6:15 p.m.

CVE-2022-23625

2022-03-1118:15:00
Alpine Linux Development Team
security.alpinelinux.org
22
wire-ios
messaging application
apple ios
malformed resource identifiers
crash
upgrade
swift exception
security vulnerability

EPSS

0.001

Percentile

40.8%

JSON

Wire-ios is a messaging application using the wire protocol on apple’s ios platform. In versions prior to 3.95 malformed resource identifiers may render the iOS Wire Client completely unusable by causing it to repeatedly crash on launch. These malformed resource identifiers can be generated and sent between Wire users. The root cause lies in wireapp/wire-ios-transport, where code responsible for removing sensible tokens before logging may fail and lead to a crash (Swift exception) of the application. This causes undesirable behavior, however the (greater) Wire system is still functional. Users are advised to upgrade as soon as possible. There are no known workarounds for this issue.

OSVersionArchitecturePackageVersionFilename
Alpineedge-communitynoarchwire= 0.5.0-r0UNKNOWN

Related

prion 1
cvelist 1
cve 1
nvd 1
osv 1
prion
prion
Code injection
2022-03-11 18:15:00
cvelist
cvelist
CVE-2022-23625 DoS vulnerability: Malformed Resource Identifiers
2022-03-11 18:00:15
cve
cve
CVE-2022-23625
2022-03-11 18:15:31
nvd
nvd
CVE-2022-23625
2022-03-11 18:15:31
osv
osv
CVE-2022-23625
2022-03-11 18:15:31

EPSS

0.001

Percentile

40.8%

JSON
Related for ALPINE:CVE-2022-23625
prion1cvelist1cve1nvd1osv1