CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-3988

Signal Messenger for Android 4.24.8 may expose private information when using "disappearing messages." If a user uses the photo feature available in the "attach file" menu, then Signal will leave the picture in its own cache directory, which is available to any application on the system.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 21.1%

CVSS Severity

CVSS v3 Score 3.3

CVSS v2 Score 1.9

References

http://www.securityfocus.com/bid/106207
https://www.talosintelligence.com/vulnerability_reports/TALOS-2018-0656
http://www.securityfocus.com/bid/106207
https://www.talosintelligence.com/vulnerability_reports/TALOS-2018-0656

Products affected by CVE-2018-3988

Signal » Private Messenger » Version: 4.24.8

cpe:2.3:a:signal:private_messenger:4.24.8

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-3988

Products

Pricing

Contact Us