Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
tencent wechat vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2020-27874
This vulnerability allows remote malicious users to execute arbitrary code on affected installations of Tencent WeChat 7.0.18. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exi...
Tencent Wechat 7.0.18
7.5
CVSSv3
CVE-2023-40829
There is an interface unauthorized access vulnerability in the background of Tencent Enterprise Wechat Privatization 2.5.x and 2.6.930000.
Tencent Enterprise Wechat Privatization 2.6.930000
Tencent Enterprise Wechat Privatization 2.5.0
7.5
CVSSv3
CVE-2021-40180
In the WeChat application 8.0.10 for Android and iOS, a mini program can obtain sensitive information from a user's address book via wx.searchContacts.
Tencent Wechat 8.0.10
7.5
CVSSv3
CVE-2018-13439
WXPayUtil in WeChat Pay Java SDK allows XXE attacks involving a merchant notification URL.
Tencent Wechat Pay -
6.5
CVSSv3
CVE-2021-27247
This vulnerability allows remote malicious users to disclose sensitive information on affected installations of Tencent WeChat 2.9.5 desktop version. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file...
Tencent Wechat 2.9.5
5.5
CVSSv3
CVE-2019-11419
vcodec2_hls_filter in libvoipCodec_v7a.so in the WeChat application up to and including 7.0.3 for Android allows malicious users to cause a denial of service (application crash) by replacing an emoji file (under the /sdcard/tencent/MicroMsg directory) with a crafted .wxgf file. T...
Tencent Wechat
1 EDB exploit
5.4
CVSSv3
CVE-2019-17151
This vulnerability allows remote attackers redirect users to an external resource on affected installations of Tencent WeChat before 7.0.9. User interaction is required to exploit this vulnerability in that the target must be within a chat session together with the attacker. The ...
Tencent Wechat
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started