Every CVE whose affected-product data names Rakuten Viber, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (6)
CVE-2025-13476 — CVSS 9.8 (critical): Rakuten Viber Cloak mode in Android v25.7.2.0g and Windows v25.6.0.0–v25.8.1.0 uses a static and predictable TLS ClientHello fingerprint…
CVE-2019-18800 — CVSS 8.8 (high): Viber through 11.7.0.5 allows a remote attacker who can capture a victim's internet traffic to steal their Viber account, because not all…
CVE-2019-12569 — CVSS 7.8 (high): A vulnerability in Viber before 10.7.0 for Desktop (Windows) could allow an attacker to execute arbitrary commands on a targeted system…
CVE-2020-14049 — CVSS 7.5 (high): Viber for Windows up to 13.2.0.39 does not properly quote its custom URI handler. A malicious website could launch Viber with arbitrary…
CVE-2025-55996 — CVSS 6.3 (medium): Viber Desktop 25.6.0 is vulnerable to HTML Injection via the text parameter of the message compose/forward interface
CVE-2018-3987 — CVSS 5.5 (medium): An exploitable information disclosure vulnerability exists in the 'Secret Chats' functionality of Rakuten Viber on Android 9.3.0.6. The…