CNNVD-202509-1734 Information

CNNVD ID

CNNVD-202509-1734

Related CVE

CVE-2025-55996

• CNNVD Published: 2025-09-12

Description (Chinese)

Rakuten Viber Desktop是卢森堡Viber公司的一款即时通讯软件。 Rakuten Viber Desktop 25.6.0版本存在安全漏洞，该漏洞源于消息撰写或转发界面中文本参数处理不当，可能导致HTML注入攻击。

Description (English)

Rakuten Viber Desktop is an instant communication software of the Luxembourg company Viber. There is a security loophole in version 25.6.0 of Rakuten Viber Desktop, which stems from the mishandling of text parameters in the message-writing or forwarding interface, which could lead to an HTML injection attack.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Viber

Published

2025-09-12

Last Modified

2026-02-24

References

https://github.com/thawkhant/viber-desktop-html-injection https://access.redhat.com/security/cve/cve-2025-55996