2 matches found
CVE-2018-17780
CVE-2018-17780 affects Telegram Desktop (tdesktop) 1.3.14 and Telegram 3.3.0.0 WP8.1 on Windows. The root cause is an unsafe default that accepts P2P connections from outside the user’s My Contacts list, enabling leakage of both public and private IP addresses during calls. The vulnerability is d...
CVE-2017-17715
The CVE-2017-17715 entry refers to a directory traversal vulnerability in the Telegram Messenger Android client. The flaw is in the saveFile method of MediaController.java, which, when handling a file-transfer request from a remote peer before 2017-12-08, could be exploited to traverse directorie...