The Terminate Session feature in the Telegram application through 7.2.1 for Android, and through 2.4.7 for Windows and UNIX, fails to invalidate a recently active session.
References
Link | Resource |
---|---|
https://0ffsecninja.github.io/Telegram:CVE-2021-2735.html | Third Party Advisory |
https://security.gentoo.org/glsa/202105-07 | Third Party Advisory |
Configurations
Configuration 1 (hide)
|
History
23 May 2022, 22:18
Type | Values Removed | Values Added |
---|---|---|
References | (GENTOO) https://security.gentoo.org/glsa/202105-07 - Third Party Advisory |
26 May 2021, 10:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
26 Feb 2021, 16:12
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : 5.0
v3 : 5.3 |
CWE | CWE-613 | |
CPE | cpe:2.3:a:telegram:telegram:*:*:*:*:*:unix:*:* cpe:2.3:a:telegram:telegram:*:*:*:*:*:android:*:* cpe:2.3:a:telegram:telegram:*:*:*:*:*:windows:*:* |
|
References | (MISC) https://0ffsecninja.github.io/Telegram:CVE-2021-2735.html - Third Party Advisory |
19 Feb 2021, 19:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-02-19 19:15
Updated : 2023-12-10 13:41
NVD link : CVE-2021-27351
Mitre link : CVE-2021-27351
CVE.ORG link : CVE-2021-27351
JSON object : View
Products Affected
telegram
- telegram
CWE
CWE-613
Insufficient Session Expiration