Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
telegram vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2021-31315
Telegram Android <7.1.0 (2090), Telegram iOS <7.1, and Telegram macOS <7.1 are affected by a Stack Based Overflow in the blit function of their custom fork of the rlottie library. A remote attacker might be able to access Telegram's stack memory out-of-bounds on a v...
Telegram Telegram
383
VMScore
CVE-2021-31318
Telegram Android <7.1.0 (2090), Telegram iOS <7.1, and Telegram macOS <7.1 are affected by a Type Confusion in the LOTCompLayerItem::LOTCompLayerItem function of their custom fork of the rlottie library. A remote attacker might be able to access heap memory out-of-bounds...
Telegram Telegram
516
VMScore
CVE-2021-31320
Telegram Android <7.1.0 (2090), Telegram iOS <7.1, and Telegram macOS <7.1 are affected by a Heap Buffer Overflow in the VGradientCache::generateGradientColorTable function of their custom fork of the rlottie library. A remote attacker might be able to overwrite heap mem...
Telegram Telegram
516
VMScore
CVE-2021-31321
Telegram Android <7.1.0 (2090), Telegram iOS <7.1, and Telegram macOS <7.1 are affected by a Stack Based Overflow in the gray_split_cubic function of their custom fork of the rlottie library. A remote attacker might be able to overwrite Telegram's stack memory out-o...
Telegram Telegram
383
VMScore
CVE-2021-31322
Telegram Android <7.1.0 (2090), Telegram iOS <7.1, and Telegram macOS <7.1 are affected by a Heap Buffer Overflow in the LOTGradient::populate function of their custom fork of the rlottie library. A remote attacker might be able to access heap memory out-of-bounds on a v...
Telegram Telegram
187
VMScore
CVE-2021-27205
Telegram prior to 7.4 (212543) Stable on macOS stores the local copy of self-destructed messages in a sandbox path, leading to sensitive information disclosure.
Telegram Telegram
187
VMScore
CVE-2021-41861
The Telegram application 7.5.0 up to and including 7.8.0 for Android does not properly implement image self-destruction, a different vulnerability than CVE-2019-16248. After approximately two to four uses of the self-destruct feature, there is a misleading UI indication that an i...
Telegram Telegram
445
VMScore
CVE-2021-27351
The Terminate Session feature in the Telegram application up to and including 7.2.1 for Android, and up to and including 2.4.7 for Windows and UNIX, fails to invalidate a recently active session.
Telegram Telegram
320
VMScore
CVE-2020-10570
The Telegram application up to and including 5.12 for Android, when Show Popup is enabled, might allow physically proximate malicious users to bypass intended restrictions on message reading and message replying. This might be interpreted as a bypass of the passcode feature.
Telegram Telegram
187
VMScore
CVE-2019-16248
The "delete for" feature in Telegram prior to 5.11 on Android does not delete shared media files from the Telegram Images directory. In other words, there is a potentially misleading UI indication that a sender can remove a recipient's copy of a previously sent ima...
Telegram Telegram
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2021-35000
CVE-2024-4439
unauthorized
CVE-2024-0042
CVE-2024-31848
CVE-2023-40694
cache poisoning
CVE-2024-23707
firmware
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »