VYPR

Viber for Windows

by Viber

CVEs (1)

  • CVE-2020-14049HigJun 22, 2020
    risk 0.49cvss 7.5epss 0.02

    Viber for Windows up to 13.2.0.39 does not properly quote its custom URI handler. A malicious website could launch Viber with arbitrary parameters, forcing a victim to send an NTLM authentication request, and either relay the request or capture the hash for offline password…