{"containers": {"cna": {"affected": [{"product": "wire-webapp", "vendor": "wireapp", "versions": [{"status": "affected", "version": "< 022-05-04-production.0"}, {"status": "affected", "version": "< 2022-05-04-production.0-v0.29.7-0-a6f2ded"}]}], "descriptions": [{"lang": "en", "value": "Wire is a secure messaging application. Wire is vulnerable to arbitrary HTML and Javascript execution via insufficient escaping when rendering `@mentions` in the wire-webapp. If a user receives and views a malicious message, arbitrary code is injected and executed in the context of the victim allowing the attacker to fully control the user account. Wire-desktop clients that are connected to a vulnerable wire-webapp version are also vulnerable to this attack. The issue has been fixed in wire-webapp 2022-05-04-production.0 and is already deployed on all Wire managed services. On-premise instances of wire-webapp need to be updated to docker tag 2022-05-04-production.0-v0.29.7-0-a6f2ded or wire-server 2022-05-04 (chart/4.11.0) or later. No known workarounds exist."}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.6, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H", "version": "3.1"}}], "problemTypes": [{"descriptions": [{"cweId": "CWE-79", "description": "CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", "lang": "en", "type": "CWE"}]}, {"descriptions": [{"cweId": "CWE-80", "description": "CWE-80: Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS)", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"dateUpdated": "2022-06-25T07:05:09", "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "https://github.com/wireapp/wire-webapp/security/advisories/GHSA-jgv3-4j56-fvh6"}], "source": {"advisory": "GHSA-jgv3-4j56-fvh6", "discovery": "UNKNOWN"}, "title": "Cross Site Scripting in Wire Messages", "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "security-advisories@github.com", "ID": "CVE-2022-29168", "STATE": "PUBLIC", "TITLE": "Cross Site Scripting in Wire Messages"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "wire-webapp", "version": {"version_data": [{"version_value": "< 022-05-04-production.0"}, {"version_value": "< 2022-05-04-production.0-v0.29.7-0-a6f2ded"}]}}]}, "vendor_name": "wireapp"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Wire is a secure messaging application. Wire is vulnerable to arbitrary HTML and Javascript execution via insufficient escaping when rendering `@mentions` in the wire-webapp. If a user receives and views a malicious message, arbitrary code is injected and executed in the context of the victim allowing the attacker to fully control the user account. Wire-desktop clients that are connected to a vulnerable wire-webapp version are also vulnerable to this attack. The issue has been fixed in wire-webapp 2022-05-04-production.0 and is already deployed on all Wire managed services. On-premise instances of wire-webapp need to be updated to docker tag 2022-05-04-production.0-v0.29.7-0-a6f2ded or wire-server 2022-05-04 (chart/4.11.0) or later. No known workarounds exist."}]}, "impact": {"cvss": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.6, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H", "version": "3.1"}}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')"}]}, {"description": [{"lang": "eng", "value": "CWE-80: Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS)"}]}]}, "references": {"reference_data": [{"name": "https://github.com/wireapp/wire-webapp/security/advisories/GHSA-jgv3-4j56-fvh6", "refsource": "CONFIRM", "url": "https://github.com/wireapp/wire-webapp/security/advisories/GHSA-jgv3-4j56-fvh6"}]}, "source": {"advisory": "GHSA-jgv3-4j56-fvh6", "discovery": "UNKNOWN"}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-03T06:17:54.056Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://github.com/wireapp/wire-webapp/security/advisories/GHSA-jgv3-4j56-fvh6"}]}]}, "cveMetadata": {"assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "assignerShortName": "GitHub_M", "cveId": "CVE-2022-29168", "datePublished": "2022-06-25T07:05:09", "dateReserved": "2022-04-13T00:00:00", "dateUpdated": "2024-08-03T06:17:54.056Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:wire:wire-webapp:2016-07-29-17-00:*:*:*:*:*:*:*", "matchCriteriaId": "9F7C539F-3406-4848-88B7-1A4CEE38D557", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2016-08-04-15-44:*:*:*:*:*:*:*", "matchCriteriaId": "17E0C8D9-5708-4291-81D1-F832887FC225", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2016-08-23-09-31:*:*:*:*:*:*:*", "matchCriteriaId": "C8105074-D75D-45CE-BD71-B89C223DF4D1", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2016-08-24-10-10:*:*:*:*:*:*:*", "matchCriteriaId": "69BBA0A6-D920-421A-B891-B895A998B05A", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2016-08-29-14-54:*:*:*:*:*:*:*", "matchCriteriaId": "89B4A31D-9A40-47A2-86F3-F1A2AA651B4C", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2016-09-08-15-38:*:*:*:*:*:*:*", "matchCriteriaId": "CEC3A79C-8538-49AC-BDFB-D402565C7E03", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2016-09-19-14-01:*:*:*:*:*:*:*", "matchCriteriaId": "69AF5CF2-D72E-46F1-8215-8D5E4DCFB925", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2016-09-28-14-58:*:*:*:*:*:*:*", "matchCriteriaId": "0A3A8F43-DA0A-4F5D-A472-3A0B06D434C1", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2016-10-11-15-34:*:*:*:*:*:*:*", "matchCriteriaId": "C57EE09E-592A-4FA0-8E59-D35361C021EA", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2016-10-18-08-10:*:*:*:*:*:*:*", "matchCriteriaId": "53307D89-F157-46A4-90AA-3C55AEE3120C", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2016-10-25-08-17:*:*:*:*:*:*:*", "matchCriteriaId": "6CAE7457-18ED-45A8-BB64-57AB21FEE836", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2016-10-26-18-58:*:*:*:*:*:*:*", "matchCriteriaId": "DC24AD26-4697-487D-9207-2C69143CE4D8", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2016-11-03-16-09:*:*:*:*:*:*:*", "matchCriteriaId": "7AE32987-DC06-4803-AAA8-9C0B0551B1C9", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2016-11-08-15-06:*:*:*:*:*:*:*", "matchCriteriaId": "F5F5E64A-3382-46E1-AFD8-08B0E3586850", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2016-12-01-12-57:*:*:*:*:*:*:*", "matchCriteriaId": "5E4EB81D-CF7E-4413-B7BA-9C295E7CE038", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2016-12-13-15-12:*:*:*:*:*:*:*", "matchCriteriaId": "843B53EC-AFB9-4EE3-8CD4-0D4B2A866AE5", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2017-01-23-12-12:*:*:*:*:*:*:*", "matchCriteriaId": "FFFCF1CB-F0B9-4A7D-944E-3D2CEB5BAB39", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2017-02-01-14-49:*:*:*:*:*:*:*", "matchCriteriaId": "9D7D882B-F9EF-420F-9AFF-E861D430CFF2", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2017-02-17-10-10:*:*:*:*:*:*:*", "matchCriteriaId": "4E70DB4C-ABD5-4C17-AD56-7F169573B15B", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2017-02-24-13-06:*:*:*:*:*:*:*", "matchCriteriaId": "A863E546-BDE3-4D5A-9ADF-B49DC081C0CF", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2017-03-08-17-32:*:*:*:*:*:*:*", "matchCriteriaId": "CB175224-86C0-45CB-8A12-69EDDD07E8CD", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2017-03-14-15-05:*:*:*:*:*:*:*", "matchCriteriaId": "4FA786C8-B3B6-4379-B7B3-1DA2052A9EAA", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2017-03-21-11-00:*:*:*:*:*:*:*", "matchCriteriaId": "6E2DF068-E6DC-4BA5-AFE4-BF67055E4E91", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2017-03-27-17-10:*:*:*:*:*:*:*", "matchCriteriaId": "0AE8B336-C5F4-4CF8-846B-BFB4566C104D", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2017-03-28-14-23:*:*:*:*:*:*:*", "matchCriteriaId": "A4CA9B72-D62D-4AC4-96BB-4898D638986B", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2017-04-05-16-58:*:*:*:*:*:*:*", "matchCriteriaId": "5710465C-6031-4F9E-9355-02E600948829", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2017-04-07-09-42:*:*:*:*:*:*:*", "matchCriteriaId": "855EB691-A1B8-4D8D-AC6D-5B1232DFD08F", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2017-04-19-12-31:*:*:*:*:*:*:*", "matchCriteriaId": "E6BA8AA6-DB10-47AF-9FAD-8E483CBEF317", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2017-04-20-15-54:*:*:*:*:*:*:*", "matchCriteriaId": "3C3C8FEA-884A-4991-B790-FAC75E461E0B", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2017-05-03-10-29:*:*:*:*:*:*:*", "matchCriteriaId": "06CAA931-4B33-4A9E-A26D-892ACB6C8AB3", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2017-05-19-16-10:*:*:*:*:*:*:*", "matchCriteriaId": "E174117D-3B04-42A5-A3A6-DE2F37AF8145", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2017-05-26-08-16:*:*:*:*:*:*:*", "matchCriteriaId": "5D70A243-D148-4A6A-BB22-823E272D1913", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2017-05-26-12-03:*:*:*:*:*:*:*", "matchCriteriaId": "2F57CA5B-719A-4684-8018-6388700852BF", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2017-06-01-10-02:*:*:*:*:*:*:*", "matchCriteriaId": "2E2D961A-42BB-40C6-A3D2-836CD2F21F16", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2017-06-07-15-03:*:*:*:*:*:*:*", "matchCriteriaId": "B39EDE4D-885D-47CD-A6F5-64A580666BD2", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2017-06-07-18-05:*:*:*:*:*:*:*", "matchCriteriaId": "7292A70B-D0A2-4CD7-A229-268F3520B57B", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2017-06-22-12-18:*:*:*:*:*:*:*", "matchCriteriaId": "87CFA36C-79F5-409C-9737-3EC8EF8359DE", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2017-06-28-15-13:*:*:*:*:*:*:*", "matchCriteriaId": "4C6FD8B7-C1FC-47D4-968E-750F12C6EBCC", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2017-07-06-12-44:*:*:*:*:*:*:*", "matchCriteriaId": "92CA3E21-10A5-4FC9-827A-EA76432F748D", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2017-07-06-15-48:*:*:*:*:*:*:*", "matchCriteriaId": "6991E3D8-0599-4353-98A1-9D920AFBD1B2", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2017-07-18-12-50:*:*:*:*:*:*:*", "matchCriteriaId": "73D81970-3D5F-4085-A1ED-8B9CE09BBD7F", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2017-08-03-15-19:*:*:*:*:*:*:*", "matchCriteriaId": "0BF075E4-D307-48C7-8EE5-227C6532A478", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2017-08-04-09-04:*:*:*:*:*:*:*", "matchCriteriaId": "00A34B62-E72A-4121-B0F5-7DA6760EB898", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2017-08-04-15-01:*:*:*:*:*:*:*", "matchCriteriaId": "0EBBA781-432A-4818-B298-638F60669618", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2017-08-08-15-09:*:*:*:*:*:*:*", "matchCriteriaId": "4B04D48B-F041-43E6-A835-C146D3554349", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2017-08-24-10-57:*:*:*:*:*:*:*", "matchCriteriaId": "EEED22FA-343D-420E-B1C3-D9E7A48ABDD8", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2017-08-31-14-21:*:*:*:*:*:*:*", "matchCriteriaId": "D065A91E-8767-4FD3-B03B-4B4B8A6E3424", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2017-09-26-07-18:*:*:*:*:*:*:*", "matchCriteriaId": "7E746341-D0BF-433D-934A-7FFE6A90AB2C", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2017-09-26-13-00:*:*:*:*:*:*:*", "matchCriteriaId": "62A60EC8-F015-4CA3-B675-57BF76A755DD", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2017-10-09-08-42:*:*:*:*:*:*:*", "matchCriteriaId": "33D83552-0CD2-45D8-BE39-84C5E785FB3E", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2017-10-19-10-45:*:*:*:*:*:*:*", "matchCriteriaId": "012816A1-AC4F-47CF-9E5C-92EB7502ED44", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2017-10-25-07-08:*:*:*:*:*:*:*", "matchCriteriaId": "76BFA566-71AA-4B6B-8FCB-2F0686C31247", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2017-11-07-08-50:*:*:*:*:*:*:*", "matchCriteriaId": "887419A5-E84E-4C36-BF1F-69EC03C14B2C", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2017-11-10-10-41:*:*:*:*:*:*:*", "matchCriteriaId": "5692B579-BD32-4EC6-88A8-04138FFBB4C8", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2017-12-04-10-23:*:*:*:*:*:*:*", "matchCriteriaId": "8862C15F-3CD8-4A89-96C5-A9ACBBE36B42", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2017-12-04-13-34:*:*:*:*:*:*:*", "matchCriteriaId": "8FBAD9BC-4995-46C4-8104-31F48E9F92C3", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2017-12-07-11-13:*:*:*:*:*:*:*", "matchCriteriaId": "620048DB-0CCF-4900-8006-A0ECD124CF16", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2017-12-20-12-48:*:*:*:*:*:*:*", "matchCriteriaId": "A02F12E6-3894-4C6A-BCC0-844FC6E2470C", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2018-01-24-18-11:*:*:*:*:*:*:*", "matchCriteriaId": "124FE630-8D9F-4D38-8593-5021CED0DE7A", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2018-02-01-10-26:*:*:*:*:*:*:*", "matchCriteriaId": "154FB7CC-CF39-4605-AC01-D00C1DC50148", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2018-02-16-07-54:*:*:*:*:*:*:*", "matchCriteriaId": "812CCBCA-26D9-4D09-AE60-22A09230EDC0", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2018-03-12-11-41:*:*:*:*:*:*:*", "matchCriteriaId": "B74315A4-FE81-4C6E-AF7F-6667D77A7F26", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2018-04-06-07-28:*:*:*:*:*:*:*", "matchCriteriaId": "8439A11D-641A-43D9-829A-29D4037456C4", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2018-04-06-09-44:*:*:*:*:*:*:*", "matchCriteriaId": "918DB01B-9629-4738-8D30-34B559E07A2E", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2018-04-09-10-16:*:*:*:*:*:*:*", "matchCriteriaId": "09F72A1D-46D6-48E1-928D-A23C90BBE6DF", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2018-04-12-06-45:*:*:*:*:*:*:*", "matchCriteriaId": "9A81D216-7DA4-426C-978F-95A71EE8E489", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2018-04-12-11-12:*:*:*:*:*:*:*", "matchCriteriaId": "48BFB86A-F4A5-468A-BC17-F80D1065ECFC", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2018-04-12-13-37:*:*:*:*:*:*:*", "matchCriteriaId": "513E5B07-B477-4136-A9A8-88D2290A3D80", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2018-04-24-14-58:*:*:*:*:*:*:*", "matchCriteriaId": "86B2ECDA-CCAD-4623-BD36-A2909CB072FC", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2018-05-04-07-18:*:*:*:*:*:*:*", "matchCriteriaId": "5C1979A2-DE8F-42A3-8876-87863D62D69C", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2018-05-24-15-49:*:*:*:*:*:*:*", "matchCriteriaId": "EA8C4A4E-94BE-458D-ABD5-75FFF601E39C", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2018-06-19-08-04:*:*:*:*:*:*:*", "matchCriteriaId": "82FCD3A2-FA78-4B5C-AC36-06F0FF8E30B0", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2018-07-03-08-25:*:*:*:*:*:*:*", "matchCriteriaId": "252A98FA-E1CE-4623-A2CE-0D83FEB4AFE5", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2018-07-16-08-55:*:*:*:*:*:*:*", "matchCriteriaId": "F356FB82-853C-4514-8E2B-BDFEF7F98219", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2018-07-16-14-05:*:*:*:*:*:*:*", "matchCriteriaId": "1FC19B65-7FF9-4EBB-BF98-F239AD8A2B38", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2018-07-26-08-54:*:*:*:*:*:*:*", "matchCriteriaId": "733CABDE-88D7-45F6-A9E9-E6F2314D5E32", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2018-08-06-08-03:*:*:*:*:*:*:*", "matchCriteriaId": "ABE70A2F-B8F5-401D-BC4D-09DEE5353272", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2018-08-22-07-38:*:*:*:*:*:*:*", "matchCriteriaId": "89EE244E-A2E3-43D3-9F5B-F276EA279698", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2018-08-31-06-54:*:*:*:*:*:*:*", "matchCriteriaId": "0CAECC59-0DEC-4CDA-A2A9-EBBA749099B3", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2018-09-07-14-18:*:*:*:*:*:*:*", "matchCriteriaId": "BD2485E0-7EB6-4139-A034-05E9380ED8DC", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2018-09-28-11-46:*:*:*:*:*:*:*", "matchCriteriaId": "BC65D646-FCBC-47EF-A097-75078AF0F293", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2018-10-02-08-03:*:*:*:*:*:*:*", "matchCriteriaId": "60F45535-7563-4FF5-8D0D-6DBDAB0D7EEE", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2018-10-15-08-14:*:*:*:*:*:*:*", "matchCriteriaId": "173438F3-C9C1-4E02-BCF7-64A0C0ABA6DB", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2018-10-23-12-05:*:*:*:*:*:*:*", "matchCriteriaId": "22EDBEA8-129B-48E6-BE58-6847A339CB4E", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2018-11-05-11-21:*:*:*:*:*:*:*", "matchCriteriaId": "8178BE20-3229-4906-B5F2-95CEA5875C28", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2018-11-15-13-14:*:*:*:*:*:*:*", "matchCriteriaId": "A35C6F6D-EA9F-452E-839C-3232ACC0A885", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2018-11-30-11-03:*:*:*:*:*:*:*", "matchCriteriaId": "787E1701-5E39-4F00-9340-852EFA197232", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2018-12-03-11-26:*:*:*:*:*:*:*", "matchCriteriaId": "A26165D5-0226-4163-ABB1-996E0031B4BC", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2018-12-04-14-24:*:*:*:*:*:*:*", "matchCriteriaId": "619BA0A5-CC24-4CF0-A1F9-D73871072892", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-01-02-13-10:*:*:*:*:*:*:*", "matchCriteriaId": "71FB6741-D6B8-45AD-AD4E-9A010287FED9", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-01-08-13-20:*:*:*:*:*:*:*", "matchCriteriaId": "958494C4-4C98-46E3-AC2F-371D1FC9AEB6", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-01-17-15-08:*:*:*:*:*:*:*", "matchCriteriaId": "A1FED7B2-0DB5-40B5-8A83-9563C339C9AA", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-02-11:staging0:*:*:*:*:*:*", "matchCriteriaId": "0E4BDC0E-5F3B-4DF9-9148-07860F5EB15C", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-02-11:staging1:*:*:*:*:*:*", "matchCriteriaId": "673E127B-258B-4F7C-9EB2-E0D835053BF7", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-02-11:staging2:*:*:*:*:*:*", "matchCriteriaId": "CC5A38F3-5A2F-4BAC-BDD6-C17ED8EA2ABC", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-02-13:staging0:*:*:*:*:*:*", "matchCriteriaId": "5D4468DB-3434-48D1-885D-40B1A9337B54", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-02-18:staging0:*:*:*:*:*:*", "matchCriteriaId": "CB0BD5DC-CAFA-4657-86EE-D233BB605A21", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-02-18-11-26:*:*:*:*:*:*:*", "matchCriteriaId": "578FE3BD-3E30-439B-ADF3-311555BEFBEF", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-02-27:staging0:*:*:*:*:*:*", "matchCriteriaId": "CCCF1B28-2BCA-4FB3-936F-CD319E8920A1", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-02-28:staging0:*:*:*:*:*:*", "matchCriteriaId": "8424FAA9-9EAD-4CFE-9AF2-48F89340C9C7", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-02-28:staging1:*:*:*:*:*:*", "matchCriteriaId": "884CAEF9-F053-475B-A1C5-35E23D3042FF", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-02-28-15-10:*:*:*:*:*:*:*", "matchCriteriaId": "1B7645D9-7F20-48A1-A8FD-D6E118C4D303", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-02-28-15-11:*:*:*:*:*:*:*", "matchCriteriaId": "48F05A59-7849-4C42-AD10-B1B17BE676C7", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-03-05:staging0:*:*:*:*:*:*", "matchCriteriaId": "5F4D277E-3055-494E-BC5A-CCAD4C1C1845", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-03-07:staging0:*:*:*:*:*:*", "matchCriteriaId": "A9BC0A08-7606-4E48-BBD2-973C960DD8F0", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-03-11:staging0:*:*:*:*:*:*", "matchCriteriaId": "12A7C7B7-86E7-4F70-92D9-B6C3C6999BD6", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-03-13:staging0:*:*:*:*:*:*", "matchCriteriaId": "7E80152D-6FAD-4741-8CAC-301DF844277C", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-03-13:staging1:*:*:*:*:*:*", "matchCriteriaId": "0784BB5A-2CC0-4A63-99AE-39A074933E02", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-03-14-11-05:*:*:*:*:*:*:*", "matchCriteriaId": "F7BD6A68-64F5-43DC-B12C-659CF29DC8D9", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-03-18-12-58:*:*:*:*:*:*:*", "matchCriteriaId": "4AE2319F-82C4-4A2D-BE6D-C48336E9C1B9", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-03-20:staging0:*:*:*:*:*:*", "matchCriteriaId": "A44316B8-751F-4CFE-AD46-6B846497C1F1", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-03-25:staging0:*:*:*:*:*:*", "matchCriteriaId": "C53CCFBC-2116-4F0C-993B-7CF2906C898A", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-03-25:staging1:*:*:*:*:*:*", "matchCriteriaId": "63C519FD-D5A9-4EC4-A9C4-4404C125A74F", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-03-28:staging0:*:*:*:*:*:*", "matchCriteriaId": "D990E0AB-0650-47EC-8AE2-7ACE29019F6C", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-03-28:staging1:*:*:*:*:*:*", "matchCriteriaId": "CFC7E941-EF3E-4A7B-8B36-F9FA154B1EF9", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-03-29-09-38:*:*:*:*:*:*:*", "matchCriteriaId": "71C8DCC5-0DA9-4792-ACFC-E16E4191D67E", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-04-08:staging0:*:*:*:*:*:*", "matchCriteriaId": "620C777E-239A-46C9-B428-CD761863B26B", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-04-10-10-55:*:*:*:*:*:*:*", "matchCriteriaId": "B0BBA0ED-47E0-4159-B04D-708A65CC6F2F", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-04-11:staging0:*:*:*:*:*:*", "matchCriteriaId": "C407CDFD-55BA-45A7-AD3F-BD44B3FD579A", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-04-18:staging0:*:*:*:*:*:*", "matchCriteriaId": "3DDC1553-C0AE-4B22-A160-8EE4983E2D9D", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-04-23:staging1:*:*:*:*:*:*", "matchCriteriaId": "C25BCBFA-461D-4E1E-A0E3-EEBCE637FB5B", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-04-23-10-51:*:*:*:*:*:*:*", "matchCriteriaId": "6A604801-85D5-4DB8-9459-4C2E7701F179", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-04-25:staging0:*:*:*:*:*:*", "matchCriteriaId": "D388C188-D909-40DF-A9A6-075EA946C234", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-04-29:staging0:*:*:*:*:*:*", "matchCriteriaId": "9458987D-383E-4BFD-A34A-F7E464CB3AFB", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-05-09-09-36:*:*:*:*:*:*:*", "matchCriteriaId": "F13CDBBD-8818-4A9D-BC0D-241043E9E75C", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-05-14:staging0:*:*:*:*:*:*", "matchCriteriaId": "DC6A2B96-9FF0-4B69-BD62-29A343ACF7A0", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-05-15:staging0:*:*:*:*:*:*", "matchCriteriaId": "3FC2FE5A-F13B-4B71-8163-41FEEACAFA63", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-05-16:*:*:*:*:*:*:*", "matchCriteriaId": "7F1D044E-0FBC-48C5-B106-01516B66307C", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-05-16-09-26:*:*:*:*:*:*:*", "matchCriteriaId": "67EC2F9C-3CCE-4297-A27A-78FF74B059DF", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-05-31:staging0:*:*:*:*:*:*", "matchCriteriaId": "025CE142-8B76-4013-A02B-888A6F04034F", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-05-31-08-18:*:*:*:*:*:*:*", "matchCriteriaId": "B640B3D6-62A7-472C-B48C-424F762E9F28", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-06-04:staging0:*:*:*:*:*:*", "matchCriteriaId": "4D4C30AE-5F2D-4309-AD01-00DCA87064C4", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-06-06-12-31:*:*:*:*:*:*:*", "matchCriteriaId": "27B10CDC-C8E2-4BA0-97C4-5C28BB5C0686", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-06-20:staging0:*:*:*:*:*:*", "matchCriteriaId": "6C87BE96-7791-4B4E-877F-C6EE1AB75D60", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-06-24:staging0:*:*:*:*:*:*", "matchCriteriaId": "FF7C4DE4-30D4-4163-84BC-137B1447753F", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-06-25:staging0:*:*:*:*:*:*", "matchCriteriaId": "BFAEB35F-B839-4D6D-ADFE-B038C9CDCD83", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-06-26:staging0:*:*:*:*:*:*", "matchCriteriaId": "551086BF-6882-4F40-A458-331BF1A54732", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-07-01:staging0:*:*:*:*:*:*", "matchCriteriaId": "74719751-4ED1-42D5-AB9D-8E40A7DC6B66", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-07-02-12-29:*:*:*:*:*:*:*", "matchCriteriaId": "03DD8F60-508B-46FF-9DDE-EA32441C8E04", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-07-11-13-18:*:*:*:*:*:*:*", "matchCriteriaId": "68306D04-94DF-48F3-B407-3E26265049EC", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-07-30:staging0:*:*:*:*:*:*", "matchCriteriaId": "EABE2D35-9BA5-461C-8EE3-524C5B971C47", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-08-01:staging0:*:*:*:*:*:*", "matchCriteriaId": "C686FA3A-FAD2-4711-8FDC-BFECB328F5B5", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-08-14:staging0:*:*:*:*:*:*", "matchCriteriaId": "A9E7C31B-CEEE-4BE0-8BA4-56E3C6F8998C", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-08-19:staging0:*:*:*:*:*:*", "matchCriteriaId": "A60D9CC5-0F00-4EA6-B598-F8A8969448AC", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-08-21:production0:*:*:*:*:*:*", "matchCriteriaId": "16781A10-B098-4B01-BFF2-9464113C8F8C", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-08-22:production0:*:*:*:*:*:*", "matchCriteriaId": "829ED145-8FA8-4825-8859-961B3FCE7283", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-08-22:staging0:*:*:*:*:*:*", "matchCriteriaId": "05AE3008-E54C-4D50-A199-F6DC4457555E", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-08-27:staging0:*:*:*:*:*:*", "matchCriteriaId": "4284544D-0FB9-4A8B-80A0-C1F6DB323C81", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-09-02:production0:*:*:*:*:*:*", "matchCriteriaId": "59BF8A05-BDEC-44D2-9F2D-85CCDCD2623F", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-09-05:staging0:*:*:*:*:*:*", "matchCriteriaId": "C6E489BC-0EB5-4934-A698-BC1EED867C1C", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-09-09:staging0:*:*:*:*:*:*", "matchCriteriaId": "0BCBFCF4-B530-4C60-9673-E4A32C3ED888", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-09-12:staging0:*:*:*:*:*:*", "matchCriteriaId": "E5C35CC2-2773-4D97-9945-E5DD16C73AE3", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-09-13:staging0:*:*:*:*:*:*", "matchCriteriaId": "F2AEF4F3-7C2A-4DCB-8A3E-1E412F8C1DCE", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-09-17:production0:*:*:*:*:*:*", "matchCriteriaId": "323CCE05-97E8-4F74-B716-F4FFB25F83E1", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-09-18:staging0:*:*:*:*:*:*", "matchCriteriaId": "9B9F15D8-DD60-47D7-87C6-DE6EBE5EEBDB", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-09-23:staging0:*:*:*:*:*:*", "matchCriteriaId": "8F1D56EA-7B15-4C58-AD0D-0B1AD186EFB2", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-09-24:production0:*:*:*:*:*:*", "matchCriteriaId": "20050346-6328-4285-9530-A31080A74A81", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-10-07:staging0:*:*:*:*:*:*", "matchCriteriaId": "BFF5B1E7-040A-4184-B441-F50AB90BA00D", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-10-07:staging1:*:*:*:*:*:*", "matchCriteriaId": "A7307B91-CF62-40B1-9A90-A493DBBF963C", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-10-08:staging0:*:*:*:*:*:*", "matchCriteriaId": "53DEF027-2F50-46CF-978F-B469FDB5ECBF", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-10-10:staging0:*:*:*:*:*:*", "matchCriteriaId": "17842173-AC4E-4FB2-AB26-0DCD5ABE6FF4", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-10-10:staging1:*:*:*:*:*:*", "matchCriteriaId": "DE255636-9342-470D-8F00-4A2507B056F4", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-10-14:staging0:*:*:*:*:*:*", "matchCriteriaId": "832F52E6-7CA5-465A-88FE-BAE7E61A7319", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-10-16:production0:*:*:*:*:*:*", "matchCriteriaId": "1CD2EBEA-6352-4CDD-8CE4-C20490088594", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-10-16:production1:*:*:*:*:*:*", "matchCriteriaId": "E1852CAC-FB66-421E-B8D3-CC67D7004273", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-10-16:staging0:*:*:*:*:*:*", "matchCriteriaId": "9CC369FA-3766-4AA1-AB99-0282608054C9", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-10-16:staging1:*:*:*:*:*:*", "matchCriteriaId": "5E38F646-BA40-489D-9ADE-4BCB1A0E568C", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-10-21:staging0:*:*:*:*:*:*", "matchCriteriaId": "FD0BB660-224C-443A-BFB2-C34612FEB006", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-10-25:staging0:*:*:*:*:*:*", "matchCriteriaId": "BDDA5925-E01E-4472-8761-2A9FA18D0E64", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-10-29:staging0:*:*:*:*:*:*", "matchCriteriaId": "F24A98D6-E1F0-4837-97AF-C02FC65EF194", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-10-31:staging0:*:*:*:*:*:*", "matchCriteriaId": "5ECB8D94-2140-4891-8D0B-C2C4F770A348", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-11-01:production0:*:*:*:*:*:*", "matchCriteriaId": "17D80EC6-9496-47C6-8786-8E5FA2FE2AB1", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-11-08:staging0:*:*:*:*:*:*", "matchCriteriaId": "97F150B2-8BE4-43D8-8A46-9CA3CA2318DB", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-11-12:staging0:*:*:*:*:*:*", "matchCriteriaId": "596F1AC5-D9AD-4FFA-A2E7-4C3FBA65F647", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-11-19:staging0:*:*:*:*:*:*", "matchCriteriaId": "1E1DB857-278C-466D-B128-BD38D76A42F6", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-11-21:production0:*:*:*:*:*:*", "matchCriteriaId": "27973D86-2AF4-4424-9B52-22D27CA1AC88", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-11-21:staging0:*:*:*:*:*:*", "matchCriteriaId": "872D4A83-CDBF-4140-BBE8-D7A06D45B23B", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-11-25:staging0:*:*:*:*:*:*", "matchCriteriaId": "14E95783-15FE-4997-B091-148D29037F16", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-11-26:production0:*:*:*:*:*:*", "matchCriteriaId": "E090810E-B2B8-4FD0-B5C8-F8845C6B4CFA", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-12-12:staging0:*:*:*:*:*:*", "matchCriteriaId": "8F42F8CC-218B-4030-A51D-5C488F42E3E4", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2019-12-20:staging0:*:*:*:*:*:*", "matchCriteriaId": "B3FB0C98-559B-4664-9EAA-AFEA642252D9", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-01-06:production0:*:*:*:*:*:*", "matchCriteriaId": "D5F68751-1DE7-4AC3-8B45-4D8EB07BFD55", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-01-09:staging0:*:*:*:*:*:*", "matchCriteriaId": "89685146-84E2-401F-A0BE-7B7658EAD8E2", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-01-13:production0:*:*:*:*:*:*", "matchCriteriaId": "45CCC915-90B7-4253-9895-F26F15C0CB9F", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-01-15:staging0:*:*:*:*:*:*", "matchCriteriaId": "E4AC25C5-1E49-40A7-9191-523CCAE5B4EB", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-01-16:staging0:*:*:*:*:*:*", "matchCriteriaId": "D9FCCBBE-0451-4344-A695-1EAE380198EB", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-01-17:staging0:*:*:*:*:*:*", "matchCriteriaId": "779E019F-AB8C-4793-AC68-5C82D5E77A73", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-01-21:staging0:*:*:*:*:*:*", "matchCriteriaId": "BD045A35-47B0-4753-8CEF-BCF891F8A341", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-01-22:production0:*:*:*:*:*:*", "matchCriteriaId": "6AB4E9C2-7BA9-4CD7-8DE1-A492BA5E0289", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-02-06:staging0:*:*:*:*:*:*", "matchCriteriaId": "56102D55-5CE3-4FAA-A29D-2B5630CC316F", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-02-11:staging0:*:*:*:*:*:*", "matchCriteriaId": "F808BE69-EF0C-4F2D-A4BC-451F5B58FB00", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-02-11:staging1:*:*:*:*:*:*", "matchCriteriaId": "098A3E28-FA67-4C9E-8D9C-44ABFB709894", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-02-14:production0:*:*:*:*:*:*", "matchCriteriaId": "2EECC296-021C-445A-A7B9-450646260F97", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-02-18:staging0:*:*:*:*:*:*", "matchCriteriaId": "636577A9-6B2B-4404-8626-45B9B5CD8F6A", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-02-20:staging0:*:*:*:*:*:*", "matchCriteriaId": "D8C5A8D4-6DC0-41D9-8FC6-AA8EA001DD91", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-02-24:staging0:*:*:*:*:*:*", "matchCriteriaId": "31CF0B9E-6513-4522-BDAB-4C75DE9CB2B6", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-02-26:staging0:*:*:*:*:*:*", "matchCriteriaId": "098C98D9-766B-43F9-AB69-B04F10F6B356", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-02-28:staging0:*:*:*:*:*:*", "matchCriteriaId": "DDC3CED9-79B3-4E47-A8B1-69A395998F60", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-03-03:production0:*:*:*:*:*:*", "matchCriteriaId": "FB483527-C22F-48A2-8746-E18A5A191285", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-03-03:staging0:*:*:*:*:*:*", "matchCriteriaId": "8C0A9B78-7128-4DC7-ABD8-F0761B774B1F", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-03-06:staging0:*:*:*:*:*:*", "matchCriteriaId": "2D1D64AA-C5F7-408D-BFD9-609076E624A0", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-03-12:staging0:*:*:*:*:*:*", "matchCriteriaId": "87E5EE83-722B-425B-885D-F248FB1E52DC", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-03-18:staging0:*:*:*:*:*:*", "matchCriteriaId": "F07B5066-7224-4069-8C05-3A878F50E789", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-03-20:staging0:*:*:*:*:*:*", "matchCriteriaId": "C0621ED4-5AEA-40FD-830B-F4478D36F448", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-03-23:production0:*:*:*:*:*:*", "matchCriteriaId": "4F8A815A-F44A-478F-948A-FECE9A9BDBFE", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-03-30:staging0:*:*:*:*:*:*", "matchCriteriaId": "40027F50-C9DD-4A59-BF91-9B2C571FC01A", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-04-01:staging0:*:*:*:*:*:*", "matchCriteriaId": "42D393CD-9503-4727-8603-7690D5E4A7DC", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-04-07:production0:*:*:*:*:*:*", "matchCriteriaId": "044587FB-BAE3-4DE0-82B5-7E82E2FFC93A", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-04-09:staging0:*:*:*:*:*:*", "matchCriteriaId": "0E833562-10A0-4AEB-ADDB-E9596AD8E8D6", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-04-16:staging0:*:*:*:*:*:*", "matchCriteriaId": "4250771C-7525-40C4-90EF-4EE7AD9CA5C5", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-04-21:production0:*:*:*:*:*:*", "matchCriteriaId": "33B2A95F-0228-44E8-984E-53721AC5C8A9", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-04-22:staging0:*:*:*:*:*:*", "matchCriteriaId": "E567BA3D-1154-4ACD-A0BD-4B4848486F52", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-04-23:staging0:*:*:*:*:*:*", "matchCriteriaId": "EAA64849-4984-465D-9AFF-3B5B4C638F95", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-04-28:staging0:*:*:*:*:*:*", "matchCriteriaId": "0C2B4515-AA46-49E3-8D1B-BC32547B281D", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-04-29:production0:*:*:*:*:*:*", "matchCriteriaId": "BC553328-4F12-4D7F-8B2C-2B46DA4FCB7F", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-05-04:staging0:*:*:*:*:*:*", "matchCriteriaId": "D0CFDDE4-FDA3-46FA-9752-84000310246D", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-05-06:staging0:*:*:*:*:*:*", "matchCriteriaId": "A223DAD4-1041-4CA9-A824-DECB7EBFF5C4", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-05-07:production0:*:*:*:*:*:*", "matchCriteriaId": "B220B6F7-10E7-483B-9E66-FD8220D78AC6", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-05-07:staging0:*:*:*:*:*:*", "matchCriteriaId": "5BFD81EC-3224-4677-BA40-B06B7A83DF67", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-05-13:staging0:*:*:*:*:*:*", "matchCriteriaId": "AF37194D-4C5D-43CA-BA81-98C2E51DE0CC", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-05-14:staging0:*:*:*:*:*:*", "matchCriteriaId": "D97BCDFD-3BA6-4B1E-A51F-8217F2B1D0C2", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-05-15:staging0:*:*:*:*:*:*", "matchCriteriaId": "54FF9525-01EC-46A3-AF64-989EBD642C36", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-05-18:staging0:*:*:*:*:*:*", "matchCriteriaId": "FC6C8FDE-B5D0-4E29-8254-F22CC289F5CB", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-05-19:staging0:*:*:*:*:*:*", "matchCriteriaId": "C88E3237-25F7-4415-A050-23763FBCF284", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-05-20:production0:*:*:*:*:*:*", "matchCriteriaId": "4B1975EE-309E-4F65-A59E-2EA7392C828A", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-05-22:staging0:*:*:*:*:*:*", "matchCriteriaId": "3E26353B-CB8E-4B5F-883B-10901B9B38DB", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-05-26:staging0:*:*:*:*:*:*", "matchCriteriaId": "6A9894C5-27B4-497B-A794-527CFFD12249", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-05-27:staging0:*:*:*:*:*:*", "matchCriteriaId": "C05CF72B-A03E-43BC-AEFB-C42665B5590F", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-05-28:staging0:*:*:*:*:*:*", "matchCriteriaId": "BC8BCE8F-952A-402E-B2EF-8A6D9F30EB9D", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-05-29:staging0:*:*:*:*:*:*", "matchCriteriaId": "DE722C59-67B7-4335-A876-435DC92CFBCB", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-06-02:production0:*:*:*:*:*:*", "matchCriteriaId": "82D79908-3921-4E0E-81BA-2B0403B96F5C", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-06-05:staging0:*:*:*:*:*:*", "matchCriteriaId": "CE6E4462-E96D-4CB8-BD6A-57C049F1C2D6", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-06-08:staging0:*:*:*:*:*:*", "matchCriteriaId": "7E8625E3-4E73-4863-92C4-B5074F571203", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-06-10:staging0:*:*:*:*:*:*", "matchCriteriaId": "D31C8B93-34C2-4008-B387-FA45B31BF679", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-06-12:staging0:*:*:*:*:*:*", "matchCriteriaId": "74D6674D-FC05-45B3-9712-A39915EFE330", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-06-15:production0:*:*:*:*:*:*", "matchCriteriaId": "19425C14-9FB2-4C0D-90AB-AFA639489935", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-06-15:staging0:*:*:*:*:*:*", "matchCriteriaId": "6BD01F15-EA3E-4A37-9B87-602C4D18DDE0", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-06-19:staging0:*:*:*:*:*:*", "matchCriteriaId": "5A09C46B-FA37-4BE2-BFF6-FD119822B494", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-06-24:production0:*:*:*:*:*:*", "matchCriteriaId": "2E1BB266-A57E-4F22-970A-FE8D0B6C390C", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-06-29:staging0:*:*:*:*:*:*", "matchCriteriaId": "E35AFBD0-3FEB-4C98-A7E6-B4A22BE8E0E6", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-07-07:staging0:*:*:*:*:*:*", "matchCriteriaId": "19824B3A-AB55-438C-B61D-2A37858B342B", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-07-07:staging1:*:*:*:*:*:*", "matchCriteriaId": "A4DD45FD-FDC8-4589-9EA4-7D8171E2B1BF", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-07-13:staging0:*:*:*:*:*:*", "matchCriteriaId": "E4EAB1BD-13E2-4FC6-88E8-F410E8B02ADE", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-07-16:staging0:*:*:*:*:*:*", "matchCriteriaId": "F30DC106-E2A5-48DD-A4F1-3FBA82214819", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-07-24:production0:*:*:*:*:*:*", "matchCriteriaId": "B16BA960-A9D9-4BEE-9E79-D972C96778E4", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-07-24:staging0:*:*:*:*:*:*", "matchCriteriaId": "4D26A9F7-AF17-4FBC-9687-E457A8B3228B", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-07-24:staging1:*:*:*:*:*:*", "matchCriteriaId": "2D0CB4D5-C31F-4525-B7B7-594EBCAF52ED", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-08-06:staging0:*:*:*:*:*:*", "matchCriteriaId": "A90E1F42-FD59-4398-BCDE-E14BD21EB2B6", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-08-12:staging0:*:*:*:*:*:*", "matchCriteriaId": "FEDC1C78-87D2-43D7-B165-38F4EA9A0396", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-08-12:staging1:*:*:*:*:*:*", "matchCriteriaId": "B4CE9B41-3778-4B99-AB43-A9F94E359907", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-08-14:staging0:*:*:*:*:*:*", "matchCriteriaId": "B6D176B2-C1E0-45FC-916A-FB9CB6B62F49", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-08-18:staging0:*:*:*:*:*:*", "matchCriteriaId": "BBCC6C00-70BF-47C6-BE7F-616204DFEA02", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-08-19:staging0:*:*:*:*:*:*", "matchCriteriaId": "1F2216B7-6365-4273-8E74-FE7D16429CBD", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-08-21:staging0:*:*:*:*:*:*", "matchCriteriaId": "B3FE0E90-E6AC-41FF-88C6-F2DD32793867", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-08-25:staging0:*:*:*:*:*:*", "matchCriteriaId": "76E69F0A-2039-490C-BE1B-CC719EE345C4", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-08-26:production0:*:*:*:*:*:*", "matchCriteriaId": "35CEC15D-B5AC-4066-9687-A77034D35433", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-09-02:staging0:*:*:*:*:*:*", "matchCriteriaId": "29F28433-2660-4CCF-ADA6-B1E9D59F9725", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-09-03:staging0:*:*:*:*:*:*", "matchCriteriaId": "4B3179D6-FE68-42D9-AAFE-2662CFE0583E", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-09-04:staging0:*:*:*:*:*:*", "matchCriteriaId": "838C3C92-BF10-4F16-9985-3EC85B267828", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-09-08:staging0:*:*:*:*:*:*", "matchCriteriaId": "528DE610-C626-41F7-BF77-8AC67211C9EF", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-09-11:production0:*:*:*:*:*:*", "matchCriteriaId": "06DB5C24-93FF-4814-8D93-84D78A449DB6", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-09-17:staging0:*:*:*:*:*:*", "matchCriteriaId": "8331902A-6C19-4571-B459-60F5FE25EE9C", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-09-18:staging0:*:*:*:*:*:*", "matchCriteriaId": "762B672A-4898-48C5-ABEF-8AC96F2CDEC0", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-09-21:production0:*:*:*:*:*:*", "matchCriteriaId": "0A6855D8-3CC1-4469-97B0-3E1B642120A6", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-09-28:staging0:*:*:*:*:*:*", "matchCriteriaId": "DEFEDFAD-16C8-4ED3-AABD-F103E7EF73FC", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-09-29:production0:*:*:*:*:*:*", "matchCriteriaId": "CDDE68A9-C8CF-4210-A993-803015027602", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-10-01:staging0:*:*:*:*:*:*", "matchCriteriaId": "0476F488-7E63-4405-B915-E1F15DA87EEB", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-10-06:staging0:*:*:*:*:*:*", "matchCriteriaId": "0F8DF3F8-5ACC-41AE-B27E-DC5203CEA73F", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-10-07:production0:*:*:*:*:*:*", "matchCriteriaId": "A8B4C59C-3901-4315-A247-709E1580EEE6", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-10-07:staging0:*:*:*:*:*:*", "matchCriteriaId": "96B62909-26AC-457A-88AA-D746E6C639F0", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-10-08:production0:*:*:*:*:*:*", "matchCriteriaId": "9820960B-4B4C-4AAE-A18D-13E38DD1D1A2", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-10-14:staging0:*:*:*:*:*:*", "matchCriteriaId": "BAA01CD3-1850-45BD-B4AD-6BC88C19E574", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-10-15:staging0:*:*:*:*:*:*", "matchCriteriaId": "1352B173-7478-492A-9F7F-03FD5A76483C", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-10-21:staging0:*:*:*:*:*:*", "matchCriteriaId": "321EF557-D41E-4E55-BB34-11CD15DE2E1F", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-10-21:staging1:*:*:*:*:*:*", "matchCriteriaId": "C5733738-FA67-40C4-BDC0-6602875CB8D4", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-10-26:staging0:*:*:*:*:*:*", "matchCriteriaId": "5A4E8B8C-DA09-42D5-85A6-437D069A9A2A", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-10-27:staging0:*:*:*:*:*:*", "matchCriteriaId": "BF13024E-2094-4C93-BA63-B836A8C5F7AE", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-10-28:production0:*:*:*:*:*:*", "matchCriteriaId": "F5E65D3F-B1C8-4288-8C6C-DCCDC6FA1339", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-11-09:production0:*:*:*:*:*:*", "matchCriteriaId": "E1A592F1-F4F5-4CDF-9140-0721A223D74F", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-11-30:production0:*:*:*:*:*:*", "matchCriteriaId": "B31D2864-4E51-4DFC-A169-1F9DD6314710", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-11-30:staging0:*:*:*:*:*:*", "matchCriteriaId": "77141266-2E6D-4DAE-89AE-9E5992B7CCF2", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-12-10:staging0:*:*:*:*:*:*", "matchCriteriaId": "A7ECF0D4-4B70-4D10-8C6B-0F6FABEF364C", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2020-12-14:production0:*:*:*:*:*:*", "matchCriteriaId": "D49B2C8C-2DF2-4555-AAC7-0FA687990944", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-01-18:production0:*:*:*:*:*:*", "matchCriteriaId": "79D07150-5D3D-4460-8D7C-88073642D8ED", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-01-18:staging1:*:*:*:*:*:*", "matchCriteriaId": "3B64A8E4-6EE2-4233-8B66-80930CF4DF9B", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-01-27:staging0:*:*:*:*:*:*", "matchCriteriaId": "538929F3-4528-43DC-8EE1-E7BF815F0252", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-02-02:production0:*:*:*:*:*:*", "matchCriteriaId": "4E69FEC4-7A2C-4E27-9AD9-186C3D373CF6", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-02-03:staging0:*:*:*:*:*:*", "matchCriteriaId": "49FBEB64-7D8D-4740-89A3-29DB34926DA8", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-02-04:staging0:*:*:*:*:*:*", "matchCriteriaId": "E8C87EE6-0EE0-490F-9A58-976F76CF1386", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-02-15:staging0:*:*:*:*:*:*", "matchCriteriaId": "01A83481-A454-4636-B178-9C72ADC349CA", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-02-17:production0:*:*:*:*:*:*", "matchCriteriaId": "DDCCEB28-57EA-4875-9800-AE993FAD6783", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-02-18:staging0:*:*:*:*:*:*", "matchCriteriaId": "BCCAA5BC-7898-4998-9AE9-20C9A42CADDC", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-02-22:staging1:*:*:*:*:*:*", "matchCriteriaId": "2F084B4F-2543-47AF-82DE-B5514B99018B", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-02-26:staging0:*:*:*:*:*:*", "matchCriteriaId": "CC6E80E7-DAB4-48F0-82B8-093D16D162BC", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-03-04:production0:*:*:*:*:*:*", "matchCriteriaId": "5F50DCF8-17C2-43E8-ACBD-546E2DA51494", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-03-05:staging0:*:*:*:*:*:*", "matchCriteriaId": "E1DE4AAD-9894-41D7-AC5D-7051656928A3", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-03-10:staging0:*:*:*:*:*:*", "matchCriteriaId": "D3A9FB95-9D27-45B6-A536-63DBEF59BFBA", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-03-15:production0:*:*:*:*:*:*", "matchCriteriaId": "66DFD20D-8672-4076-9564-48D36421B5A8", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-03-18:staging0:*:*:*:*:*:*", "matchCriteriaId": "653EA37B-AD92-4D5E-A7BA-2189F2112CE5", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-03-24:staging0:*:*:*:*:*:*", "matchCriteriaId": "84F0148E-02A6-44DC-8F96-741EAFEF070E", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-03-25:staging0:*:*:*:*:*:*", "matchCriteriaId": "DFF35810-62F0-4DCC-9414-867F3B7E13F0", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-04-01:production0:*:*:*:*:*:*", "matchCriteriaId": "7C2F0626-F344-4BEE-A0DD-AD1EDDE3E98D", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-04-06:staging0:*:*:*:*:*:*", "matchCriteriaId": "4CB4C183-700C-4894-B332-BD2BFCD0FA38", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-04-15:staging0:*:*:*:*:*:*", "matchCriteriaId": "309638E7-86EA-45B3-A195-737D397A3F45", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-04-26:staging0:*:*:*:*:*:*", "matchCriteriaId": "F992F271-E265-4217-9EC6-72D03CBC8503", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-04-28:staging0:*:*:*:*:*:*", "matchCriteriaId": "E407D214-5482-4CA2-9832-A53090D5D28D", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-05-06:staging0:*:*:*:*:*:*", "matchCriteriaId": "C1A1B66D-CC8F-41E6-9F4A-1688CD462EC3", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-05-10:production0:*:*:*:*:*:*", "matchCriteriaId": "90EA5568-D815-4D00-A2F6-B77620A4DEB8", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-05-27:staging0:*:*:*:*:*:*", "matchCriteriaId": "5F9A2A1E-F82B-4386-83D1-03DBFAE65780", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-06-01:production0:*:*:*:*:*:*", "matchCriteriaId": "A4B46404-76E8-4B07-B67C-97C1B5A33EA6", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-06-17:staging0:*:*:*:*:*:*", "matchCriteriaId": "D414BA67-128D-4F3E-A4D4-8A4595857827", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-07-09:staging0:*:*:*:*:*:*", "matchCriteriaId": "BF3AC9FF-D66F-40CE-B297-BE8A310C3EB9", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-07-26:staging0:*:*:*:*:*:*", "matchCriteriaId": "81D6276D-01ED-461B-89AD-46AADBD6C345", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-07-27:staging0:*:*:*:*:*:*", "matchCriteriaId": "61C65D07-2B14-4F44-B653-3D6C1482E0F7", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-08-03:staging0:*:*:*:*:*:*", "matchCriteriaId": "9F3BC3F7-BF71-4AC3-B9D3-0999E14FDC12", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-08-04:staging0:*:*:*:*:*:*", "matchCriteriaId": "FF2DB418-7AF4-46CD-B96C-A01CB4A7AD57", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-08-09:staging0:*:*:*:*:*:*", "matchCriteriaId": "B4724122-8B45-4289-89CA-2CA23193A0A1", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-08-17:staging0:*:*:*:*:*:*", "matchCriteriaId": "0FD4A86C-4653-4E7F-9143-76FB3CB804B5", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-08-25:staging0:*:*:*:*:*:*", "matchCriteriaId": "81ADF1F3-F554-4438-A833-A128FC2ABFE6", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-08-25:staging1:*:*:*:*:*:*", "matchCriteriaId": "445CBE08-25C5-4176-B613-6BBBF2717951", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-08-27:staging0:*:*:*:*:*:*", "matchCriteriaId": "192BE71C-1726-4C69-9B4D-27279A8EB627", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-08-30:production0:*:*:*:*:*:*", "matchCriteriaId": "6160B5D3-9F26-4A09-B071-8E084CBE16D4", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-08-30:staging0:*:*:*:*:*:*", "matchCriteriaId": "D0DBE607-AF06-49C2-8F30-4C4E91024261", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-09-03:staging0:*:*:*:*:*:*", "matchCriteriaId": "A498478F-D7F2-4159-8C39-121C4ED060D0", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-09-06:staging0:*:*:*:*:*:*", "matchCriteriaId": "BB593DC5-6FB1-4918-B277-E8AD4A6C7B5F", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-09-06:staging1:*:*:*:*:*:*", "matchCriteriaId": "9E42271B-F1DC-454F-BCF0-23F388DCAABD", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-09-06:staging2:*:*:*:*:*:*", "matchCriteriaId": "23DA48DB-F23A-49F9-8AA3-28A0F209BD3B", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-09-06:staging3:*:*:*:*:*:*", "matchCriteriaId": "2C254480-ED77-453B-B41C-2F28F68D66F8", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-09-08:staging0:*:*:*:*:*:*", "matchCriteriaId": "7FF74D56-D4B8-408B-BA0E-5FBBEFB5F3CC", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-09-09:staging0:*:*:*:*:*:*", "matchCriteriaId": "6F2654B9-1EA9-4FA1-B28B-79CE308B62DC", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-09-10:staging0:*:*:*:*:*:*", "matchCriteriaId": "32BABEE2-D9AA-4951-99F1-F1DE67473FD6", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-09-13:production0:*:*:*:*:*:*", "matchCriteriaId": "3D97B133-6835-434F-B311-641790973DE2", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-09-13:staging0:*:*:*:*:*:*", "matchCriteriaId": "2DDE0232-8EFF-4F30-BB5F-C7D5FFF61484", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-09-20:staging0:*:*:*:*:*:*", "matchCriteriaId": "34AE2C75-C82E-41BD-8E38-83414C82B634", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-09-22:staging0:*:*:*:*:*:*", "matchCriteriaId": "69EF9327-DE4A-4784-96C1-2AB1DE48F9A1", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-09-27:production0:*:*:*:*:*:*", "matchCriteriaId": "522B7FB0-7702-466D-8D3B-0C2753E42CDE", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-09-29:staging0:*:*:*:*:*:*", "matchCriteriaId": "186239BC-23F1-4DFA-BB99-F85746AD2EDD", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-09-30:staging0:*:*:*:*:*:*", "matchCriteriaId": "306EEBF5-6A28-457B-B2D5-5457CA4BA0A2", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-10-02:staging0:*:*:*:*:*:*", "matchCriteriaId": "6FBCD7A7-6846-4F75-AED1-60E4BECCEFB2", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-10-04:production0:*:*:*:*:*:*", "matchCriteriaId": "29BECF70-2EDB-40D3-B2DC-ACEF459415D0", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-10-13:staging0:*:*:*:*:*:*", "matchCriteriaId": "EDF3B256-6DF8-4522-BB32-636B583E8709", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-10-20:staging0:*:*:*:*:*:*", "matchCriteriaId": "59F445A4-1AF5-4B2E-8874-5E450F44CAC3", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-10-27:staging0:*:*:*:*:*:*", "matchCriteriaId": "CAE9D2BB-3C54-4ACE-AA07-F4AB38B94ACC", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-11-01:production0:*:*:*:*:*:*", "matchCriteriaId": "62EA5D57-393B-459C-B8A2-A4B8EA70AB53", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-11-25:staging0:*:*:*:*:*:*", "matchCriteriaId": "84A7E7D2-6C55-4F93-9643-88064D8BFB25", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-12-01:production0:*:*:*:*:*:*", "matchCriteriaId": "989A0732-FA17-48DD-A28F-9CEF560BFF08", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-12-01:staging0:*:*:*:*:*:*", "matchCriteriaId": "735A80A4-2336-4D33-BF0E-8DCE39C31683", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2021-12-02:production0:*:*:*:*:*:*", "matchCriteriaId": "9DF8D014-E69A-4457-852D-0B244A4A329A", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2022-01-18:staging0:*:*:*:*:*:*", "matchCriteriaId": "44CBEDBF-8A9F-4F5A-8B71-1A3B2DBDA33C", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2022-01-19:staging0:*:*:*:*:*:*", "matchCriteriaId": "31410ED9-B602-4AC6-8828-114F5640FF04", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2022-01-20:staging0:*:*:*:*:*:*", "matchCriteriaId": "255F185A-6C93-4F91-900B-5E8CB9D411D9", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2022-01-27:production0:*:*:*:*:*:*", "matchCriteriaId": "CE44361B-019E-49A7-A751-D1324435F25C", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2022-02-02:staging0:*:*:*:*:*:*", "matchCriteriaId": "037D5181-21CE-4699-8E1E-446EF916669D", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2022-02-03:staging0:*:*:*:*:*:*", "matchCriteriaId": "3502EFEC-AFA0-4358-99B0-C470586B8A39", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2022-02-07:production0:*:*:*:*:*:*", "matchCriteriaId": "6B5CFB85-4607-44D7-AAE9-25F2D724AEBB", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2022-02-08:production0:*:*:*:*:*:*", "matchCriteriaId": "8C7D4132-2F82-45FB-8004-780BE327B556", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2022-02-15:production0:*:*:*:*:*:*", "matchCriteriaId": "502A4401-840C-4AC0-AA3B-6ED4FDDDD29D", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2022-02-17:staging0:*:*:*:*:*:*", "matchCriteriaId": "1EFAAC0A-43FD-4404-8A4E-F908923FB545", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2022-02-22:production0:*:*:*:*:*:*", "matchCriteriaId": "FE5174DA-0198-41D9-8B81-88635CCC029F", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2022-03-23:staging0:*:*:*:*:*:*", "matchCriteriaId": "1957D4FA-73F9-49D2-8608-759C0EBB2E7D", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2022-03-28:staging0:*:*:*:*:*:*", "matchCriteriaId": "69EC877E-1035-45C1-89AC-55CC24EB9A06", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2022-03-29:staging0:*:*:*:*:*:*", "matchCriteriaId": "087F004C-EAC8-4516-9898-EB10BC93A0B1", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2022-03-30:production0:*:*:*:*:*:*", "matchCriteriaId": "4E6A6ED8-E514-4BBE-A7E7-E41110896F82", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2022-03-31:staging0:*:*:*:*:*:*", "matchCriteriaId": "34C1E561-6CF1-44BE-A6A8-CBC5E7E552EF", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2022-04-13:staging0:*:*:*:*:*:*", "matchCriteriaId": "B7E11915-92B8-4596-BD4E-B531ABAB4775", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2022-04-19:staging0:*:*:*:*:*:*", "matchCriteriaId": "CA4627F3-54FA-4332-8422-D8E4A7DDAA1B", "vulnerable": true}, {"criteria": "cpe:2.3:a:wire:wire-webapp:2022-04-21:production0:*:*:*:*:*:*", "matchCriteriaId": "1BF59DE7-9024-4E43-9548-FB6285A6AB7D", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Wire is a secure messaging application. Wire is vulnerable to arbitrary HTML and Javascript execution via insufficient escaping when rendering `@mentions` in the wire-webapp. If a user receives and views a malicious message, arbitrary code is injected and executed in the context of the victim allowing the attacker to fully control the user account. Wire-desktop clients that are connected to a vulnerable wire-webapp version are also vulnerable to this attack. The issue has been fixed in wire-webapp 2022-05-04-production.0 and is already deployed on all Wire managed services. On-premise instances of wire-webapp need to be updated to docker tag 2022-05-04-production.0-v0.29.7-0-a6f2ded or wire-server 2022-05-04 (chart/4.11.0) or later. No known workarounds exist."}, {"lang": "es", "value": "Wire es una aplicaci\u00f3n de mensajer\u00eda segura. Wire es vulnerable a una ejecuci\u00f3n arbitraria de HTML y Javascript por medio de un escape insuficiente cuando es renderizado \"@mentions\" en la aplicaci\u00f3n web de Wire. Si un usuario recibe y visualiza un mensaje malicioso, es inyectado c\u00f3digo arbitrario y es ejecutado en el contexto de la v\u00edctima, lo que permite al atacante controlar totalmente la cuenta del usuario. Los clientes de Wire-desktop que est\u00e1n conectados a una versi\u00f3n vulnerable de wire-webapp tambi\u00e9n son vulnerables a este ataque. El problema ha sido corregido en wire-webapp versi\u00f3n 2022-05-04-production.0 y ya est\u00e1 desplegado en todos los servicios administrados de Wire. Las instancias locales de wire-webapp deben actualizarse a docker tag 2022-05-04-production.0-v0.29.7-0-a6f2ded o wire-server 2022-05-04 (chart/4.11.0) o posterior. No se presentan mitigaciones conocidas"}], "id": "CVE-2022-29168", "lastModified": "2022-07-11T13:28:26.997", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.1, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 2.7, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.6, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 6.0, "source": "security-advisories@github.com", "type": "Secondary"}]}, "published": "2022-06-25T07:15:07.303", "references": [{"source": "security-advisories@github.com", "tags": ["Third Party Advisory"], "url": "https://github.com/wireapp/wire-webapp/security/advisories/GHSA-jgv3-4j56-fvh6"}], "sourceIdentifier": "security-advisories@github.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-79"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-79"}, {"lang": "en", "value": "CWE-80"}], "source": "security-advisories@github.com", "type": "Secondary"}]}

{}