4 matches found
CVE-2025-48061
wire-webapp is the web application for the open-source messaging service Wire. A change caused a regression resulting in sessions not being properly invalidated. A user that logged out of the Wire webapp, could have been automatically logged in again after re-opening the application. This does no...
CVE-2025-48061
creationtimestamp| type| source ---|---|--- 2025-05-22 17:42:22+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114552716789860574 2025-05-22 17:43:38+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/17337 2025-05-22 19:21:41+00:00| seen|...
CVE-2025-48061 wire-webapp Has Insufficient Session Invalidation after User Logout
wire-webapp is the web application for the open-source messaging service Wire. A change caused a regression resulting in sessions not being properly invalidated. A user that logged out of the Wire webapp, could have been automatically logged in again after re-opening the application. This does no...
CVE-2025-48061
CVE-2025-48061 affects the wire-webapp (Wire) web client. A regression in the session invalidation process allowed a user who logged out to be automatically re-authenticated when re-opening the app. This issue is present in versions up to but not including 2025-05-20-production.0; the underlying ...