Viber
by Viber
CVEs (3)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2019-18800 | Hig | 0.57 | 8.8 | 0.02 | Nov 6, 2019 | Viber through 11.7.0.5 allows a remote attacker who can capture a victim's internet traffic to steal their Viber account, because not all Viber protocol traffic is encrypted. TCP data packet 9 on port 4244 from the victim's device contains cleartext information such as the… | ||
| CVE-2019-12569 | Hig | 0.52 | 7.8 | 0.15 | Jun 3, 2019 | A vulnerability in Viber before 10.7.0 for Desktop (Windows) could allow an attacker to execute arbitrary commands on a targeted system. This vulnerability is due to unsafe search paths used by the application URI. An attacker could exploit this vulnerability by convincing a… | ||
| CVE-2025-55996 | Med | 0.41 | 6.3 | 0.00 | Sep 12, 2025 | Viber Desktop 25.6.0 is vulnerable to HTML Injection via the text parameter of the message compose/forward interface |
- risk 0.57cvss 8.8epss 0.02
Viber through 11.7.0.5 allows a remote attacker who can capture a victim's internet traffic to steal their Viber account, because not all Viber protocol traffic is encrypted. TCP data packet 9 on port 4244 from the victim's device contains cleartext information such as the…
- risk 0.52cvss 7.8epss 0.15
A vulnerability in Viber before 10.7.0 for Desktop (Windows) could allow an attacker to execute arbitrary commands on a targeted system. This vulnerability is due to unsafe search paths used by the application URI. An attacker could exploit this vulnerability by convincing a…
- risk 0.41cvss 6.3epss 0.00
Viber Desktop 25.6.0 is vulnerable to HTML Injection via the text parameter of the message compose/forward interface