First published: Fri Aug 23 2019(Updated: )
The Privacy > Phone Number feature in the Telegram app 5.10 for Android and iOS provides an incorrect indication that the access level is Nobody, because attackers can find these numbers via the Group Info feature, e.g., by adding a significant fraction of a region's assigned phone numbers.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Telegram Telegram | =5.10.0 | |
Telegram Telegram | =5.10.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2019-15514 is a vulnerability in the Privacy > Phone Number feature in the Telegram app 5.10 for Android and iOS.
The severity of CVE-2019-15514 is medium with a CVSS score of 5.3.
CVE-2019-15514 allows attackers to find phone numbers via the Group Info feature in the Telegram app 5.10 for Android and iOS.
The Telegram app 5.10.0 for Android and iOS is affected by CVE-2019-15514.
To fix the Privacy > Phone Number issue in the Telegram app, users should update to a version higher than 5.10.0.