Lucene search
Veracode Vulnerability DatabaseVERACODE:32365HistoryOct 05, 2021 - 3:36 a.m.
Unauthorised Account Access
2021-10-0503:36:32
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
11
vulnerable
unauthorized access
old access token
github
wire-ios
EPSS
0.003
Percentile
70.8%
github.com/wireapp/wire-ios is vulnerable to unauthorised account access . Authentication using old but valid access token allows an attacker to get access to the account upon changing the email.
References
github.com/wireapp/wire-ios-sync-engine/security/advisories/GHSA-w727-5f74-49xj
github.com/wireapp/wire-ios-transport/security/advisories/GHSA-p354-6r3m-g4xr
github.com/wireapp/wire-ios/commit/b0e7bb3b13dd8212032cb46e32edf701694687c7
github.com/wireapp/wire-ios/security/advisories/GHSA-6f4c-phfj-m255
github.com/wireapp/wire-server/security/advisories/GHSA-9rm2-w6pq-333m
Related
alpinelinux
alpinelinux
CVE-2021-41093
2021-10-04 19:15:00
nvd
nvd
CVE-2021-41093
2021-10-04 19:15:08
prion
prion
Authentication flaw
2021-10-04 19:15:00
cvelist
cvelist
cnvd
cnvd
Wire licensing issue vulnerability
2021-10-09 00:00:00
cve
cve
CVE-2021-41093
2021-10-04 19:15:08
osv
osv
CVE-2021-41100
2021-10-04 19:15:08
CVE-2021-41093
2021-10-04 19:15:08
