Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
telegram vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2021-31322
Telegram Android <7.1.0 (2090), Telegram iOS <7.1, and Telegram macOS <7.1 are affected by a Heap Buffer Overflow in the LOTGradient::populate function of their custom fork of the rlottie library. A remote attacker might be able to access heap memory out-of-bounds on a v...
Telegram Telegram
383
VMScore
CVE-2021-31323
Telegram Android <7.1.0 (2090), Telegram iOS <7.1, and Telegram macOS <7.1 are affected by a Heap Buffer Overflow in the LottieParserImpl::parseDashProperty function of their custom fork of the rlottie library. A remote attacker might be able to access heap memory out-of...
Telegram Telegram
187
VMScore
CVE-2019-16248
The "delete for" feature in Telegram prior to 5.11 on Android does not delete shared media files from the Telegram Images directory. In other words, there is a potentially misleading UI indication that a sender can remove a recipient's copy of a previously sent ima...
Telegram Telegram
187
VMScore
CVE-2021-27205
Telegram prior to 7.4 (212543) Stable on macOS stores the local copy of self-destructed messages in a sandbox path, leading to sensitive information disclosure.
Telegram Telegram
187
VMScore
CVE-2021-27204
Telegram prior to 7.4 (212543) Stable on macOS stores the local passcode in cleartext, leading to information disclosure.
Telegram Telegram
445
VMScore
CVE-2021-27351
The Terminate Session feature in the Telegram application up to and including 7.2.1 for Android, and up to and including 2.4.7 for Windows and UNIX, fails to invalidate a recently active session.
Telegram Telegram
187
VMScore
CVE-2021-41861
The Telegram application 7.5.0 up to and including 7.8.0 for Android does not properly implement image self-destruction, a different vulnerability than CVE-2019-16248. After approximately two to four uses of the self-destruct feature, there is a misleading UI indication that an i...
Telegram Telegram
320
VMScore
CVE-2020-10570
The Telegram application up to and including 5.12 for Android, when Show Popup is enabled, might allow physically proximate malicious users to bypass intended restrictions on message reading and message replying. This might be interpreted as a bypass of the passcode feature.
Telegram Telegram
383
VMScore
CVE-2021-31317
Telegram Android <7.1.0 (2090), Telegram iOS <7.1, and Telegram macOS <7.1 are affected by a Type Confusion in the VDasher constructor of their custom fork of the rlottie library. A remote attacker might be able to access Telegram's heap memory out-of-bounds on a vi...
Telegram Telegram
516
VMScore
CVE-2021-31321
Telegram Android <7.1.0 (2090), Telegram iOS <7.1, and Telegram macOS <7.1 are affected by a Stack Based Overflow in the gray_split_cubic function of their custom fork of the rlottie library. A remote attacker might be able to overwrite Telegram's stack memory out-o...
Telegram Telegram
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »