彙總 cryptocat_project 相關全部產品的 CVE 與安全漏洞情報,包括 CVSS、EPSS、公開時間與漏洞情報資料。
已披露問題常與 路徑處理缺陷、輸入驗證問題與跨站腳本 相關,可能在 軟體部署與生產負載 場景中帶來 異常行為與檔案覆寫 等暴露風險。
相關漏洞資料主要來源於公開漏洞披露與安全公告,可用於評估歷史漏洞暴露面與修補優先順序。
| CVE | 摘要 | 來源 | 最高 CVSS | EPSS % | 公開時間 | 更新時間 |
|---|---|---|---|---|---|---|
| CVE-2013-4108 | Multiple unspecified vulnerabilities in Cryptocat Project Cryptocat 2.0.18 have unknown impact and attack vectors. | [email protected] | 9.8 | 0.64% | 2019-11-14 | 2024-11-21 |
| CVE-2013-4106 | A Cross-site scripting (XSS) vulnerability exists in Conversation Overview Nickname in Cryptocat before 2.0.22. | [email protected] | 6.1 | 0.67% | 2019-11-14 | 2024-11-21 |
| CVE-2013-4109 | An unspecified cross-site scripting (XSS) vulnerability exists in Cryptocat Message Handling 1.1.165. | [email protected] | 6.1 | 0.67% | 2019-11-14 | 2024-11-21 |
| CVE-2013-4110 | Cryptocat has an Unspecified Chat Participant User List Disclosure | [email protected] | 5.3 | 0.55% | 2019-11-05 | 2024-11-21 |
| CVE-2013-4107 | Cryptocat before 2.0.22: cryptocat.js handlePresence() has cross site scripting | [email protected] | 6.1 | 0.41% | 2019-11-05 | 2024-11-21 |
| CVE-2013-4105 | Cryptocat before 2.0.22 has Multiparty Encryption Scheme Information Disclosure | [email protected] | 7.5 | 0.25% | 2019-11-04 | 2024-11-21 |
| CVE-2013-2260 | Cryptocat before 2.0.22: Cryptocat.random() Function Array Key has Entropy Weakness | [email protected] | 9.8 | 0.50% | 2019-11-04 | 2024-11-21 |
| CVE-2013-2259 | Cryptocat before 2.0.22 has Arbitrary Code Execution on Firefox Conversation Overview | [email protected] | 9.8 | 0.71% | 2019-11-04 | 2024-11-21 |
| CVE-2013-2258 | Cryptocat before 2.0.22 has Nickname User Impersonation | [email protected] | 5.3 | 0.42% | 2019-11-04 | 2024-11-21 |
| CVE-2013-2257 | Cryptocat before 2.0.42 has Group Chat ECC Private Key Generation Brute Force Weakness | [email protected] | 7.5 | 0.41% | 2019-11-04 | 2024-11-21 |
| CVE-2013-4104 | Cryptocat before 2.0.22 has weak encryption in the Socialist Millionnaire Protocol | [email protected] | 7.5 | 0.14% | 2019-11-04 | 2024-11-21 |
| CVE-2013-2262 | Cryptocat strophe.js before 2.0.22 has information disclosure | [email protected] | 7.5 | 0.47% | 2019-11-04 | 2024-11-21 |
| CVE-2013-2261 | Cryptocat before 2.0.22 Chrome Extension 'img/keygen.gif' has Information Disclosure | [email protected] | 7.5 | 10.29% | 2019-11-04 | 2024-11-21 |
| CVE-2013-4103 | Cryptocat before 2.0.22 has Remote Script Injection due to improperly sanitizing user input | [email protected] | 9.8 | 7.14% | 2019-11-04 | 2024-11-21 |
| CVE-2013-4102 | Cryptocat before 2.0.22 strophe.js Math.random() Random Number Generator Weakness | [email protected] | 9.1 | 0.44% | 2019-11-04 | 2024-11-21 |
| CVE-2013-4101 | Cryptocat before 2.0.22 Link Markup Decorator HTML Handling Weakness | [email protected] | 5.3 | 0.41% | 2019-11-04 | 2024-11-21 |
| CVE-2013-4100 | Cryptocat before 2.0.22 has Remote Denial of Service via username | [email protected] | 7.5 | 1.13% | 2019-11-04 | 2024-11-21 |