Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
2.1
CVSSv2

CVE-2021-27205

Published: 12/02/2021 Updated: 14/02/2021
CVSS v2 Base Score: 2.1 | Impact Score: 2.9 | Exploitability Score: 3.9
CVSS v3 Base Score: 5.5 | Impact Score: 3.6 | Exploitability Score: 1.8
Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N
Subscribe to Telegram

Vulnerability Summary

Telegram prior to 7.4 (212543) Stable on macOS stores the local copy of self-destructed messages in a sandbox path, leading to sensitive information disclosure.

Most Upvoted Vulmon Research Post

Telegram prior to 7.4 (212543) for macOS (7.3 (211334) Stable) stores the local copy of received message (audio/video) on a custom path even after those messages are deleted/disappeared from the secret chat. https://www.inputzero.io/2020/12/telegram-privacy-fails-again.html

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

telegram telegram

References

CWE-312https://www.inputzero.io/2020/12/telegram-privacy-fails-again.htmlhttps://www.youtube.com/watch?v=Go-4srm_1fQhttps://nvd.nist.govhttps://exchange.xforce.ibmcloud.com/vulnerabilities/196763
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
man-in-the-middleCVE-2021-20661CVE-2020-4953CVE-2018-19518CVE-2021-27645CVE-2021-3156CVE-2021-26684deserializationwireless