CVE-2014-8688

An issue was discovered in Telegram Messenger 2.6 for iOS and 1.8.2 for Android. Secret chat messages are available in cleartext in process memory and a .db file.
References
Link Resource
https://blog.zimperium.com/telegram-hack/ Third Party Advisory
https://blog.zimperium.com/telegram-hack/ Third Party Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:telegram:messenger:2.6:*:*:*:*:iphone_os:*:*

Configuration 2 (hide)

cpe:2.3:a:telegram:messenger:1.8.2:*:*:*:*:android:*:*

History

21 Nov 2024, 02:19

Type Values Removed Values Added
References () https://blog.zimperium.com/telegram-hack/ - Third Party Advisory () https://blog.zimperium.com/telegram-hack/ - Third Party Advisory

Information

Published : 2017-03-14 09:59

Updated : 2024-11-21 02:19


NVD link : CVE-2014-8688

Mitre link : CVE-2014-8688

CVE.ORG link : CVE-2014-8688


JSON object : View

Products Affected

telegram

  • messenger
CWE
CWE-200

Exposure of Sensitive Information to an Unauthorized Actor