MEDIUM
Chatsecure
CVE published 2017-02-09
CVE-2017-5590
CVE-2017-5590 is an XMPP Message Carbons display-spoofing flaw in ChatSecure for iOS (3.2.0 through 4.0.0) and Zom for iOS (through 1.0.11). A remote attacker can make the vulnerable app display messages as if they came from another user, including a contact, which can support convincing impersonation and social-engineering attacks.