CVE-2026-35049

Source
https://cve.org/CVERecord?id=CVE-2026-35049
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-35049.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2026-35049
Aliases
  • GHSA-v6wg-c7qc-x66g
Published
2026-06-02T18:35:48.536Z
Modified
2026-07-08T08:13:01.762540774Z
Severity
  • 6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
wire-ios has Persistent Remote DoS via Integer Underflow
Details

wire-ios is an iOS client for the Wire secure messaging application. Prior to version 4.16.0, upon receiving a crafted malicious Proteus external message with an encrypted payload that is shorter than 16 bytes, the Wire iOS client crashes. The crash is triggered automatically after message receival with no user interaction. Since the malicious message persists in the conversation, the app enters a crash loop on relaunch and cannot be reopened until the local state is wiped. This issue has been fixed with version 4.16.0 which introduces the missing length check and is available via the App Store. No known workarounds are available.

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/35xxx/CVE-2026-35049.json",
    "cna_assigner": "GitHub_M",
    "cwe_ids": [
        "CWE-191",
        "CWE-20"
    ]
}
References

Affected packages

Git / github.com/wireapp/wire-ios

Affected ranges

Type
GIT
Repo
https://github.com/wireapp/wire-ios
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
Database specific
{
    "source": "AFFECTED_FIELD",
    "extracted_events": [
        {
            "introduced": "0"
        },
        {
            "fixed": "4.16.0"
        }
    ]
}

Affected versions

appstore/3.*
appstore/3.109
build/bk_3.*
build/bk_3.112.0

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-35049.json"