Every CVE whose affected-product data names Wire Wire-webapp, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2022-24799 — CVSS 9.6 (critical): wire-webapp is the web application interface for the wire messaging service. Insufficient escaping in markdown “code highlighting” in…
CVE-2022-29168 — CVSS 9.6 (critical): Wire is a secure messaging application. Wire is vulnerable to arbitrary HTML and Javascript execution via insufficient escaping when…
CVE-2021-32683 — CVSS 8.8 (high): wire-webapp is the web version of Wire, an open-source messenger. A cross-site scripting vulnerability exists in wire-webapp prior to…
CVE-2021-21400 — CVSS 7.1 (high): wire-webapp is an open-source front end for Wire, a secure collaboration platform. In wire-webapp before version 2021-03-15-production.0…
CVE-2025-48066 — CVSS 6.0 (medium): wire-webapp is the web application for the open-source messaging service Wire. A bug fix caused a regression causing an issue with function…
CVE-2022-39380 — CVSS 5.3 (medium): Wire web-app is part of Wire communications. Versions prior to 2022-11-02 are subject to Improper Handling of Exceptional Conditions. In…
CVE-2022-23605 — CVSS 4.4 (medium): Wire webapp is a web client for the wire messaging protocol. In versions prior to 2022-01-27-production.0 expired ephemeral messages were…