VYPR

Signal Android

by Signalapp

Source repositories

CVEs (2)

  • CVE-2019-9970Mar 24, 2019
    risk 0.00cvss epss 0.02

    Open Whisper Signal (aka Signal-Desktop) through 1.23.1 and the Signal Private Messenger application through 4.35.3 for Android are vulnerable to an IDN homograph attack when displaying messages containing URLs. This occurs because the application produces a clickable link even…

  • CVE-2018-3988Dec 10, 2018
    risk 0.00cvss epss 0.01

    Signal Messenger for Android 4.24.8 may expose private information when using "disappearing messages." If a user uses the photo feature available in the "attach file" menu, then Signal will leave the picture in its own cache directory, which is available to any application on…