VYPR

Signal

by Open Whisper

CVEs (2)

  • CVE-2018-16132HigAug 29, 2018
    risk 0.56cvss 8.6epss 0.01

    The image rendering component (createGenericPreview) of the Open Whisper Signal app through 2.29.0 for iOS fails to check for unreasonably large images before manipulating received images. This allows for a large image sent to a user to exhaust all available memory when the…

  • CVE-2018-9840MedApr 10, 2018
    risk 0.00cvss 6.8epss 0.00

    The Open Whisper Signal app before 2.23.2 for iOS allows physically proximate attackers to bypass the screen locker feature via certain rapid sequences of actions that include app opening, clicking on cancel, and using the home button.