MEDIUM 5.7 Publié le 2021-04-20

CVE-2021-30496

EN The Telegram app 7.6.2 for iOS allows remote authenticated users to cause a denial of service (application crash) if the victim pastes an attacker-supplied message (e.g., in the Persian language) into a channel or group. The crash occurs in MtProtoKitFramework. NOTE: the vendor's perspective is that "this behavior can't be considered a vulnerability."

CVSS v3 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H

Apps suivies affectées

ph.telegra.Telegraph

1 ouverte

Configurations CPE vulnérables

Vendor	Produit	Plateforme	Versions	CPE 2.3 URI
telegram	telegram	iOS	—	cpe:2.3:a:telegram:telegram:7.6.2:::::iphone_os::

Voir sur NVD ↗