Lucene search
K

14 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 9:14 a.m.19 views

CVE-2022-23605

Wire webapp is a web client for the wire messaging protocol. In versions prior to 2022-01-27-production.0 expired ephemeral messages were not reliably removed from local chat history of Wire Webapp. In versions before 2022-01-27-production.0 ephemeral messages and assets might still be accessible...

4.4CVSS6.3AI score0.00307EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-28575

Malicious code in bioql PyPI...

4.4CVSS4.6AI score0.00307EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-34248

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00616EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-42149

Malicious code in bioql PyPI...

7.5CVSS6.6AI score0.0041EPSS
Exploits0References2
OSV
OSV
added 2024/09/25 1:15 a.m.5 views

CVE-2024-46936

Rocket.Chat 6.12.0, 6.11.2, 6.10.5, 6.9.6, 6.8.6, 6.7.8, and before is vulnerable to a message forgery / impersonation issue. Attackers can abuse the UpdateOTRAck method to send ephemeral messages as if they were any other user they choose...

7.5CVSS5.8AI score0.0041EPSS
Exploits0References2
NVD
NVD
added 2024/09/25 1:15 a.m.6 views

CVE-2024-46936

Rocket.Chat 6.12.0, 6.11.2, 6.10.5, 6.9.6, 6.8.6, 6.7.8, and before is vulnerable to a message forgery / impersonation issue. Attackers can abuse the UpdateOTRAck method to send ephemeral messages as if they were any other user they choose...

7.5CVSS0.0041EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/09/24 12:0 a.m.14 views

CVE-2024-46936

Rocket.Chat 6.12.0, 6.11.2, 6.10.5, 6.9.6, 6.8.6, 6.7.8, and before is vulnerable to a message forgery / impersonation issue. Attackers can abuse the UpdateOTRAck method to send ephemeral messages as if they were any other user they choose...

0.0041EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/09/24 12:0 a.m.10 views

CVE-2024-46936

Rocket.Chat 6.12.0, 6.11.2, 6.10.5, 6.9.6, 6.8.6, 6.7.8, and before is vulnerable to a message forgery / impersonation issue. Attackers can abuse the UpdateOTRAck method to send ephemeral messages as if they were any other user they choose...

7.6AI score0.0041EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/09/24 12:0 a.m.6 views

PT-2024-32287 · Unknown · Rocket.Chat

Name of the Vulnerable Software and Affected Versions: Rocket.Chat versions 6.12.0 through 6.7.8 and before Description: The issue allows attackers to abuse the UpdateOTRAck method to send ephemeral messages as if they were any other user they choose, leading to a message forgery and impersonatio...

7.5CVSS7.1AI score0.0041EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2023/06/16 9:1 a.m.11 views

CVE-2023-2792 Ephemeral messages return private channel contents in permalink previews

Mattermost fails to sanitize ephemeral error messages, allowing an attacker to obtain arbitrary message contents by a specially crafted /groupmsg command...

6.5CVSS6.8AI score0.00616EPSS
Exploits0References1
Prion
Prion
added 2022/02/04 11:15 p.m.17 views

Design/Logic Flaw

Wire webapp is a web client for the wire messaging protocol. In versions prior to 2022-01-27-production.0 expired ephemeral messages were not reliably removed from local chat history of Wire Webapp. In versions before 2022-01-27-production.0 ephemeral messages and assets might still be accessible...

2.1CVSS3.8AI score0.00307EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2022/02/04 10:32 p.m.61 views

CVE-2022-23605

CVE-2022-23605 affects Wire Webapp: expired ephemeral messages were not reliably removed from local chat history and, in affected versions prior to 2022-01-27-production.0, ephemeral messages/assets could be accessible via the local search function. Viewing a message in chat view triggers deletio...

4.4CVSS3.7AI score0.00307EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2022/02/04 10:32 p.m.6 views

CVE-2022-23605 Expired Ephemeral Messages not reliably removed in wire-webapp

Wire webapp is a web client for the wire messaging protocol. In versions prior to 2022-01-27-production.0 expired ephemeral messages were not reliably removed from local chat history of Wire Webapp. In versions before 2022-01-27-production.0 ephemeral messages and assets might still be accessible...

4.4CVSS4.6AI score0.00307EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/02/04 10:32 p.m.38 views

CVE-2022-23605 Expired Ephemeral Messages not reliably removed in wire-webapp

Wire webapp is a web client for the wire messaging protocol. In versions prior to 2022-01-27-production.0 expired ephemeral messages were not reliably removed from local chat history of Wire Webapp. In versions before 2022-01-27-production.0 ephemeral messages and assets might still be accessible...

4.4CVSS4.9AI score0.00307EPSS
Exploits0References2
Rows per page
Query Builder