Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
telegram vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2020-12474
Telegram Desktop up to and including 2.0.1, Telegram up to and including 6.0.1 for Android, and Telegram up to and including 6.0.1 for iOS allow an IDN Homograph attack via Punycode in a public URL or a group chat invitation URL.
Telegram Telegram
Telegram Telegram Desktop
445
VMScore
CVE-2021-36769
A reordering issue exists in Telegram prior to 7.8.1 for Android, Telegram prior to 7.8.3 for iOS, and Telegram Desktop prior to 2.8.8. An attacker can cause the server to receive messages in a different order than they were sent a client.
Telegram Telegram
Telegram Telegram Desktop
NA
CVE-2023-26818
Telegram 9.3.1 and 9.4.0 allows malicious users to access restricted files, microphone ,or video recording via the DYLD_INSERT_LIBRARIES flag.
Telegram Telegram 9.3.1
Telegram Telegram 9.4
1 Github repository
357
VMScore
CVE-2018-17780
Telegram Desktop (aka tdesktop) 1.3.14, and Telegram 3.3.0.0 WP8.1 on Windows, leaks end-user public and private IP addresses during a call because of an unsafe default behavior in which P2P connections are accepted from clients outside of the My Contacts list.
Telegram Telegram Messenger 3.3.0.0
Telegram Telegram Desktop 1.3.14
1 Article
605
VMScore
CVE-2019-10044
Telegram Desktop prior to 1.5.12 on Windows, and the Telegram applications for Android, iOS, and Linux, is vulnerable to an IDN homograph attack when displaying messages containing URLs. This occurs because the application produces a clickable link even if (for example) Latin and...
Telegram Telegram
Telegram Telegram Desktop
605
VMScore
CVE-2018-20436
The "secret chat" feature in Telegram 4.9.1 for Android has a "side channel" in which Telegram servers send GET requests for URLs typed while composing a chat message, before that chat message is sent. There are also GET requests to other URLs on the same web ...
Telegram Web 0.7.0
Telegram Telegram 4.9.1
383
VMScore
CVE-2021-31323
Telegram Android <7.1.0 (2090), Telegram iOS <7.1, and Telegram macOS <7.1 are affected by a Heap Buffer Overflow in the LottieParserImpl::parseDashProperty function of their custom fork of the rlottie library. A remote attacker might be able to access heap memory out-of...
Telegram Telegram
320
VMScore
CVE-2020-10570
The Telegram application up to and including 5.12 for Android, when Show Popup is enabled, might allow physically proximate malicious users to bypass intended restrictions on message reading and message replying. This might be interpreted as a bypass of the passcode feature.
Telegram Telegram
187
VMScore
CVE-2021-27205
Telegram prior to 7.4 (212543) Stable on macOS stores the local copy of self-destructed messages in a sandbox path, leading to sensitive information disclosure.
Telegram Telegram
516
VMScore
CVE-2021-31321
Telegram Android <7.1.0 (2090), Telegram iOS <7.1, and Telegram macOS <7.1 are affected by a Stack Based Overflow in the gray_split_cubic function of their custom fork of the rlottie library. A remote attacker might be able to overwrite Telegram's stack memory out-o...
Telegram Telegram
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
firmware
CVE-2006-4304
CVE-2024-32878
CVE-2024-31502
XSS
CVE-2024-3059
CVE-2024-33692
CVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »