HIGH🇵🇱 Wersja polska

CVE-2022-28345

CVSS 7.5v3.1pub. 2022-04-15upd. 2024-11-21

The Signal app before 5.34 for iOS allows URI spoofing via RTLO injection. It incorrectly renders RTLO encoded URLs beginning with a non-breaking space, when there is a hash character in the URL. This technique allows a remote unauthenticated attacker to send legitimate looking links, appearing to be any website URL, by abusing the non-http/non-https automatic rendering of URLs. An attacker can spoof, for example, example.com, and masquerade any URL with a malicious destination. An attacker requires a subdomain such as gepj, txt, fdp, or xcod, which would appear backwards as jpeg, txt, pdf, and docx respectively.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
  • Signal

    APP
    Signal
    < 5.34
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Auth Bypass
CWE
References

Related vulnerabilities

CVE-2018-16132HIGH8.6ten sam produkt

The image rendering component (createGenericPreview) of the Open Whisper Signal app through 2.29.0 for iOS fai...

CVE-2020-5753MEDIUM5.3ten sam produkt

Signal Private Messenger Android v4.59.0 and up and iOS v3.8.1.5 and up allows a remote non-contact to ring a ...

CVE-2018-9840MEDIUM6.8ten sam produkt

The Open Whisper Signal app before 2.23.2 for iOS allows physically proximate attackers to bypass the screen l...

CVE-2025-5715LOW0.3ten sam produkt

A vulnerability was found in Signal App 7.41.4 on Android. It has been declared as problematic. This vulnerabi...

CVE-2019-17192CRITICAL9.8ten sam vendor

The WebRTC component in the Signal Private Messenger application through 4.47.7 for Android processes videocon...