PT-2021-17409 · Telegram+1 · Telegram+1

Published

2021-02-01

Updated

2022-05-23

CVE-2021-27351

CVSS v3.1

5.3

Medium

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Name of the Vulnerable Software and Affected Versions Telegram versions through 7.2.1 for Android Telegram versions through 2.4.7 for Windows and UNIX

Description The Terminate Session feature in the Telegram application fails to invalidate a recently active session.

Recommendations For Telegram versions through 7.2.1 for Android, update to a version that fixes the Terminate Session feature issue. For Telegram versions through 2.4.7 for Windows and UNIX, update to a version that fixes the Terminate Session feature issue.

Fix

Insufficient Session Expiration

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-613

Related Identifiers

ALT-PU-2021-1192

CVE-2021-27351

Affected Products

Alt Linux

PT-2021-17409 · Telegram+1 · Telegram+1

CVE-2021-27351

Weakness Enumeration

Related Identifiers

Affected Products

References · 12