Описание
The TeleMessage archiving backend through 2025-05-05 holds cleartext copies of messages from TM SGNL (aka Archive Signal) app users, which is different functionality than described in the TeleMessage "End-to-End encryption from the mobile phone through to the corporate archive" documentation, as exploited in the wild in May 2025.
Ссылки
- Press/Media Coverage
- Press/Media Coverage
- Press/Media Coverage
- US Government Resource
Уязвимые конфигурации
Конфигурация 1Версия до 2025-05-05 (включая)
cpe:2.3:a:telemessage:text_message_archiver:*:*:*:*:*:*:*:*
EPSS
Процентиль: 85%
0.02497
Низкий
1.9 Low
CVSS3
4.9 Medium
CVSS3
Дефекты
CWE-912
NVD-CWE-Other
Связанные уязвимости
CVSS3: 1.9
github
9 месяцев назад
The TeleMessage archiving backend through 2025-05-05 holds cleartext copies of messages from TM SGNL (aka Archive Signal) app users, which is different functionality than described in the TeleMessage "End-to-End encryption from the mobile phone through to the corporate archive" documentation, as exploited in the wild in May 2025.
EPSS
Процентиль: 85%
0.02497
Низкий
1.9 Low
CVSS3
4.9 Medium
CVSS3
Дефекты
CWE-912
NVD-CWE-Other