VYPR
Vendor

Viber

Products
2
CVEs
4
Across products
4
Status
Private

Products

2

Recent CVEs

4
  • CVE-2019-18800HigNov 6, 2019
    risk 0.57cvss 8.8epss 0.02

    Viber through 11.7.0.5 allows a remote attacker who can capture a victim's internet traffic to steal their Viber account, because not all Viber protocol traffic is encrypted. TCP data packet 9 on port 4244 from the victim's device contains cleartext information such as the…

  • CVE-2019-12569HigJun 3, 2019
    risk 0.52cvss 7.8epss 0.15

    A vulnerability in Viber before 10.7.0 for Desktop (Windows) could allow an attacker to execute arbitrary commands on a targeted system. This vulnerability is due to unsafe search paths used by the application URI. An attacker could exploit this vulnerability by convincing a…

  • CVE-2020-14049HigJun 22, 2020
    risk 0.49cvss 7.5epss 0.02

    Viber for Windows up to 13.2.0.39 does not properly quote its custom URI handler. A malicious website could launch Viber with arbitrary parameters, forcing a victim to send an NTLM authentication request, and either relay the request or capture the hash for offline password…

  • CVE-2025-55996MedSep 12, 2025
    risk 0.41cvss 6.3epss 0.00

    Viber Desktop 25.6.0 is vulnerable to HTML Injection via the text parameter of the message compose/forward interface