Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
signal private messenger vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2020-5753
Signal Private Messenger Android v4.59.0 and up and iOS v3.8.1.5 and up allows a remote non-contact to ring a victim's Signal phone and disclose currently used DNS server due to ICE Candidate handling before call is answered or declined.
Signal Signal
Signal Private Messenger
4.3
CVSSv2
CVE-2019-9970
Open Whisper Signal (aka Signal-Desktop) up to and including 1.23.1 and the Signal Private Messenger application up to and including 4.35.3 for Android are vulnerable to an IDN homograph attack when displaying messages containing URLs. This occurs because the application produces...
Signal Signal-desktop
Signal Private Messenger
5
CVSSv2
CVE-2019-17191
The Signal Private Messenger application prior to 4.47.7 for Android allows a caller to force a call to be answered, without callee user interaction, via a connect message. The existence of the call is noticeable to the callee; however, the audio channel may be open before the ca...
Signal Private Messenger
7.5
CVSSv2
CVE-2019-17192
The WebRTC component in the Signal Private Messenger application up to and including 4.47.7 for Android processes videoconferencing RTP packets before a callee chooses to answer a call, which might make it easier for remote malicious users to cause a denial of service or possibly...
Signal Private Messenger
1.9
CVSSv2
CVE-2018-3988
Signal Messenger for Android 4.24.8 may expose private information when using "disappearing messages." If a user uses the photo feature available in the "attach file" menu, then Signal will leave the picture in its own cache directory, which is available to an...
Signal Private Messenger 4.24.8
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started