First published: Fri Feb 19 2021(Updated: )
The Terminate Session feature in the Telegram application through 7.2.1 for Android, and through 2.4.7 for Windows and UNIX, fails to invalidate a recently active session.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Telegram Telegram | <=2.4.7 | |
Telegram Telegram | <=2.4.7 | |
Telegram Telegram | <=7.2.1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2021-27351 is a vulnerability that affects the Terminate Session feature in the Telegram application through version 7.2.1 for Android and version 2.4.7 for Windows and UNIX.
The severity of CVE-2021-27351 is medium with a severity value of 5.3.
The Telegram application versions up to and including 7.2.1 for Android and versions up to and including 2.4.7 for Windows and UNIX are affected by CVE-2021-27351.
CVE-2021-27351 causes the Terminate Session feature in Telegram to fail in invalidating a recently active session.
Yes, you can find references for CVE-2021-27351 at the following URLs: [1] https://0ffsecninja.github.io/Telegram:CVE-2021-2735.html [2] https://security.gentoo.org/glsa/202105-07