Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cnvdChina National Vulnerability DatabaseCNVD-2022-10722
HistoryOct 09, 2021 - 12:00 a.m.

Wire licensing issue vulnerability

2021-10-0900:00:00
China National Vulnerability Database
www.cnvd.org.cn
7

0.003 Low

EPSS

Percentile

70.9%

JSON

Wire is a chat software from a personal developer. The software supports Web, WindowsiOS, Android, and OS X platforms, has group functionality, the ability to make voice calls, send photos and its ingenious way of saying hello, PING. Wire suffers from an authorization issue vulnerability that allows an attacker to take over an account by changing emails if they obtain an old but valid access token. No details of the vulnerability are currently available.

CPENameOperatorVersion
wire wirelt3.86

Related

alpinelinux 1
nvd 1
cve 1
cvelist 1
prion 1
veracode 1
osv 2
ibm 1
alpinelinux
alpinelinux
CVE-2021-41093
2021-10-04 19:15:00
nvd
nvd
CVE-2021-41093
2021-10-04 19:15:08
cve
cve
CVE-2021-41093
2021-10-04 19:15:08
cvelist
cvelist
CVE-2021-41093 Account takeover when having only access to a user's short lived token
2021-10-04 18:15:11
prion
prion
Authentication flaw
2021-10-04 19:15:00
veracode
veracode
Unauthorised Account Access
2021-10-05 03:36:32
osv
osv
CVE-2021-41100
2021-10-04 19:15:08
CVE-2021-41093
2021-10-04 19:15:08
ibm
ibm
Security Bulletin: IBM Security Verify Information Queue uses a Wire Schema jar with multiple vulnerabilities (CVE-2020-27853, CVE-2021-41093)
2022-07-20 19:31:24

0.003 Low

EPSS

Percentile

70.9%

JSON
Related for CNVD-2022-10722
alpinelinux1nvd1cve1cvelist1prion1veracode1osv2ibm1