This page lists publicly disclosed CVE vulnerabilities affecting cryptocat_project cryptocat (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2013-4108 | Multiple unspecified vulnerabilities in Cryptocat Project Cryptocat 2.0.18 have unknown impact and attack vectors. | [email protected] | 9.8 | 1.54% | 2019-11-14 | 2024-11-21 |
| CVE-2013-4106 | A Cross-site scripting (XSS) vulnerability exists in Conversation Overview Nickname in Cryptocat before 2.0.22. | [email protected] | 6.1 | 1.47% | 2019-11-14 | 2024-11-21 |
| CVE-2013-4109 | An unspecified cross-site scripting (XSS) vulnerability exists in Cryptocat Message Handling 1.1.165. | [email protected] | 6.1 | 1.71% | 2019-11-14 | 2024-11-21 |
| CVE-2013-4110 | Cryptocat has an Unspecified Chat Participant User List Disclosure | [email protected] | 5.3 | 2.00% | 2019-11-05 | 2024-11-21 |
| CVE-2013-4107 | Cryptocat before 2.0.22: cryptocat.js handlePresence() has cross site scripting | [email protected] | 6.1 | 1.11% | 2019-11-05 | 2024-11-21 |
| CVE-2013-4105 | Cryptocat before 2.0.22 has Multiparty Encryption Scheme Information Disclosure | [email protected] | 7.5 | 1.13% | 2019-11-04 | 2024-11-21 |
| CVE-2013-2260 | Cryptocat before 2.0.22: Cryptocat.random() Function Array Key has Entropy Weakness | [email protected] | 9.8 | 2.16% | 2019-11-04 | 2024-11-21 |
| CVE-2013-2259 | Cryptocat before 2.0.22 has Arbitrary Code Execution on Firefox Conversation Overview | [email protected] | 9.8 | 3.67% | 2019-11-04 | 2024-11-21 |
| CVE-2013-2258 | Cryptocat before 2.0.22 has Nickname User Impersonation | [email protected] | 5.3 | 1.36% | 2019-11-04 | 2024-11-21 |
| CVE-2013-2257 | Cryptocat before 2.0.42 has Group Chat ECC Private Key Generation Brute Force Weakness | [email protected] | 7.5 | 1.74% | 2019-11-04 | 2024-11-21 |
| CVE-2013-4104 | Cryptocat before 2.0.22 has weak encryption in the Socialist Millionnaire Protocol | [email protected] | 7.5 | 0.76% | 2019-11-04 | 2024-11-21 |
| CVE-2013-2262 | Cryptocat strophe.js before 2.0.22 has information disclosure | [email protected] | 7.5 | 1.93% | 2019-11-04 | 2024-11-21 |
| CVE-2013-2261 | Cryptocat before 2.0.22 Chrome Extension 'img/keygen.gif' has Information Disclosure | [email protected] | 7.5 | 11.06% | 2019-11-04 | 2024-11-21 |
| CVE-2013-4103 | Cryptocat before 2.0.22 has Remote Script Injection due to improperly sanitizing user input | [email protected] | 9.8 | 6.87% | 2019-11-04 | 2024-11-21 |
| CVE-2013-4102 | Cryptocat before 2.0.22 strophe.js Math.random() Random Number Generator Weakness | [email protected] | 9.1 | 1.97% | 2019-11-04 | 2024-11-21 |
| CVE-2013-4101 | Cryptocat before 2.0.22 Link Markup Decorator HTML Handling Weakness | [email protected] | 5.3 | 1.36% | 2019-11-04 | 2024-11-21 |
| CVE-2013-4100 | Cryptocat before 2.0.22 has Remote Denial of Service via username | [email protected] | 7.5 | 2.36% | 2019-11-04 | 2024-11-21 |