Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
telegram telegram vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2021-36769
A reordering issue exists in Telegram prior to 7.8.1 for Android, Telegram prior to 7.8.3 for iOS, and Telegram Desktop prior to 2.8.8. An attacker can cause the server to receive messages in a different order than they were sent a client.
Telegram Telegram
Telegram Telegram Desktop
383
VMScore
CVE-2020-12474
Telegram Desktop up to and including 2.0.1, Telegram up to and including 6.0.1 for Android, and Telegram up to and including 6.0.1 for iOS allow an IDN Homograph attack via Punycode in a public URL or a group chat invitation URL.
Telegram Telegram
Telegram Telegram Desktop
NA
CVE-2023-26818
Telegram 9.3.1 and 9.4.0 allows malicious users to access restricted files, microphone ,or video recording via the DYLD_INSERT_LIBRARIES flag.
Telegram Telegram 9.3.1
Telegram Telegram 9.4
1 Github repository
357
VMScore
CVE-2018-17780
Telegram Desktop (aka tdesktop) 1.3.14, and Telegram 3.3.0.0 WP8.1 on Windows, leaks end-user public and private IP addresses during a call because of an unsafe default behavior in which P2P connections are accepted from clients outside of the My Contacts list.
Telegram Telegram Messenger 3.3.0.0
Telegram Telegram Desktop 1.3.14
1 Article
605
VMScore
CVE-2019-10044
Telegram Desktop prior to 1.5.12 on Windows, and the Telegram applications for Android, iOS, and Linux, is vulnerable to an IDN homograph attack when displaying messages containing URLs. This occurs because the application produces a clickable link even if (for example) Latin and...
Telegram Telegram
Telegram Telegram Desktop
605
VMScore
CVE-2018-20436
The "secret chat" feature in Telegram 4.9.1 for Android has a "side channel" in which Telegram servers send GET requests for URLs typed while composing a chat message, before that chat message is sent. There are also GET requests to other URLs on the same web ...
Telegram Web 0.7.0
Telegram Telegram 4.9.1
383
VMScore
CVE-2021-31315
Telegram Android <7.1.0 (2090), Telegram iOS <7.1, and Telegram macOS <7.1 are affected by a Stack Based Overflow in the blit function of their custom fork of the rlottie library. A remote attacker might be able to access Telegram's stack memory out-of-bounds on a v...
Telegram Telegram
383
VMScore
CVE-2021-31319
Telegram Android <7.1.0 (2090), Telegram iOS <7.1, and Telegram macOS <7.1 are affected by an Integer Overflow in the LOTGradient::populate function of their custom fork of the rlottie library. A remote attacker might be able to access heap memory out-of-bounds on a vict...
Telegram Telegram
516
VMScore
CVE-2021-31320
Telegram Android <7.1.0 (2090), Telegram iOS <7.1, and Telegram macOS <7.1 are affected by a Heap Buffer Overflow in the VGradientCache::generateGradientColorTable function of their custom fork of the rlottie library. A remote attacker might be able to overwrite heap mem...
Telegram Telegram
383
VMScore
CVE-2021-31318
Telegram Android <7.1.0 (2090), Telegram iOS <7.1, and Telegram macOS <7.1 are affected by a Type Confusion in the LOTCompLayerItem::LOTCompLayerItem function of their custom fork of the rlottie library. A remote attacker might be able to access heap memory out-of-bounds...
Telegram Telegram
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22120
CVE-2024-35921
CVE-2024-35874
brute force
CVE-2024-36080
unprivileged
CVE-2024-35917
IDOR
CVE-2024-4947
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »