CVE-2020-15258

Name of the Vulnerable Software and Affected Versions Wire versions prior to 3.20.x

Description The issue allows an attacker to execute code on the victim's machine by sending messages containing links with arbitrary protocols. The victim must interact with the link and sees the URL that is opened. The estimated number of potentially affected devices is not specified.

Recommendations For versions prior to 3.20.x, update to Wire 3.20.x to resolve the issue. As a temporary workaround, consider avoiding interaction with links from untrusted sources until the update is applied.