Описание
Telegram Desktop through 2.0.1, Telegram through 6.0.1 for Android, and Telegram through 6.0.1 for iOS allow an IDN Homograph attack via Punycode in a public URL or a group chat invitation URL.
Ссылки
- Third Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 6.0.1 (включая)Версия до 6.0.1 (включая)Версия до 2.0.1 (включая)
Одно из
cpe:2.3:a:telegram:telegram:*:*:*:*:*:android:*:*
cpe:2.3:a:telegram:telegram:*:*:*:*:*:iphone_os:*:*
cpe:2.3:a:telegram:telegram_desktop:*:*:*:*:*:*:*:*
EPSS
Процентиль: 74%
0.00795
Низкий
6.5 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
NVD-CWE-noinfo
Связанные уязвимости
CVSS3: 6.5
ubuntu
почти 6 лет назад
Telegram Desktop through 2.0.1, Telegram through 6.0.1 for Android, and Telegram through 6.0.1 for iOS allow an IDN Homograph attack via Punycode in a public URL or a group chat invitation URL.
CVSS3: 6.5
debian
почти 6 лет назад
Telegram Desktop through 2.0.1, Telegram through 6.0.1 for Android, an ...
github
больше 3 лет назад
Telegram Desktop through 2.0.1, Telegram through 6.0.1 for Android, and Telegram through 6.0.1 for iOS allow an IDN Homograph attack via Punycode in a public URL or a group chat invitation URL.
EPSS
Процентиль: 74%
0.00795
Низкий
6.5 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
NVD-CWE-noinfo