Cryptocat before 2.0.42 has Group Chat ECC Private Key Generation Brute Force Weakness
7.5CVSS
7.5AI Score
0.002EPSS
5.3CVSS
5.3AI Score
0.002EPSS
Cryptocat before 2.0.22 has Arbitrary Code Execution on Firefox Conversation Overview
9.8CVSS
9.4AI Score
0.009EPSS
9.8CVSS
9.4AI Score
0.023EPSS
Cryptocat before 2.0.22 Chrome Extension 'img/keygen.gif' has Information Disclosure
7.5CVSS
7.3AI Score
0.027EPSS
7.5CVSS
7.2AI Score
0.006EPSS
7.5CVSS
7.6AI Score
0.029EPSS
5.3CVSS
5.3AI Score
0.002EPSS
9.1CVSS
9.1AI Score
0.007EPSS
Cryptocat before 2.0.22 has Remote Script Injection due to improperly sanitizing user input
9.8CVSS
9.5AI Score
0.055EPSS
7.5CVSS
7.5AI Score
0.007EPSS
7.5CVSS
7.3AI Score
0.002EPSS
A Cross-site scripting (XSS) vulnerability exists in Conversation Overview Nickname in Cryptocat before 2.0.22.
6.1CVSS
6AI Score
0.003EPSS
6.1CVSS
6.1AI Score
0.002EPSS
Multiple unspecified vulnerabilities in Cryptocat Project Cryptocat 2.0.18 have unknown impact and attack vectors.
9.8CVSS
9.4AI Score
0.002EPSS
An unspecified cross-site scripting (XSS) vulnerability exists in Cryptocat Message Handling 1.1.165.
6.1CVSS
6AI Score
0.003EPSS
5.3CVSS
5.3AI Score
0.006EPSS