exploitDog

GHSA-99fv-v434-wh6f

Опубликовано: 12 фев. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 6.8

Описание

An issue in the SharedConfig class of Telegram Android APK v.11.7.0 allows a physically proximate attacker to bypass authentication and escalate privileges by manipulating the return value of the checkPasscode method.

An issue in the SharedConfig class of Telegram Android APK v.11.7.0 allows a physically proximate attacker to bypass authentication and escalate privileges by manipulating the return value of the checkPasscode method.

Ссылки

EPSS

Процентиль: 83%

0.01866

Низкий

6.8 Medium

CVSS3

CVE ID

Дефекты

CWE-287

CWE-863

Связанные уязвимости

CVE-2024-54916

CVSS3: 6.8

nvd

12 месяцев назад

An issue in the SharedConfig class of Telegram Android APK v.11.7.0 allows a physically proximate attacker to bypass authentication and escalate privileges by manipulating the return value of the checkPasscode method.

EPSS

Процентиль: 83%

0.01866

Низкий

6.8 Medium

CVSS3

CVE ID

Дефекты

CWE-287

CWE-863