Known Vulnerabilities for products from Telegram
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Telegram".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-32982 | Not Provided | 2026-03-31 | 2026-03-31 | |
| CVE-2026-32980 | Not Provided | 2026-03-29 | 2026-03-30 | |
| CVE-2026-23807 | Not Provided | 2026-03-25 | 2026-03-25 | |
| CVE-2025-68589 | Not Provided | 2025-12-24 | 2026-04-01 | |
| CVE-2025-62993 | Not Provided | 2025-12-09 | 2026-04-01 | |
| CVE-2025-58794 | Not Provided | 2025-09-05 | 2026-04-01 | |
| CVE-2025-48268 | Not Provided | 2025-05-19 | 2026-04-01 | |
| CVE-2025-30949 | Not Provided | 2025-07-16 | 2026-04-01 | |
| CVE-2024-38789 | Not Provided | 2025-01-02 | 2026-04-01 | |
| CVE-2023-34658 | Telegram v9.6.3 on iOS allows attackers to hide critical information on the User Interface via calling the function SFSafariV... | 5.3 - MEDIUM | 2023-06-29 | 2023-07-07 |
| CVE-2023-26818 | Telegram 9.3.1 and 9.4.0 allows attackers to access restricted files, microphone ,or video recording via the DYLD_INSERT_LIBR... | 5.5 - MEDIUM | 2023-05-19 | 2023-05-26 |
| CVE-2022-43363 | ** DISPUTED ** Telegram Web 15.3.1 allows XSS via a certain payload derived from a Target Corporation website. NOTE: some thi... | 6.1 - MEDIUM | 2022-12-06 | 2023-11-07 |
| CVE-2021-41861 | The Telegram application 7.5.0 through 7.8.0 for Android does not properly implement image self-destruction, a different vuln... | 3.3 - LOW | 2021-10-04 | 2021-10-08 |
| CVE-2021-40532 | Telegram Web K Alpha before 0.7.2 mishandles the characters in a document extension. | 9.8 - CRITICAL | 2021-09-06 | 2021-09-10 |
| CVE-2021-37596 | Telegram Web K Alpha 0.6.1 allows XSS via a document name. | 6.1 - MEDIUM | 2021-07-30 | 2021-08-09 |
| CVE-2021-36769 | A reordering issue exists in Telegram before 7.8.1 for Android, Telegram before 7.8.3 for iOS, and Telegram Desktop before 2.... | 5.3 - MEDIUM | 2021-07-17 | 2023-08-08 |
| CVE-2021-31323 | Telegram Android <7.1.0 (2090), Telegram iOS <7.1, and Telegram macOS <7.1 are affected by a Heap Buffer Overflow in the Lott... | 5.5 - MEDIUM | 2021-05-18 | 2021-05-25 |
| CVE-2021-31322 | Telegram Android <7.1.0 (2090), Telegram iOS <7.1, and Telegram macOS <7.1 are affected by a Heap Buffer Overflow in the LOTG... | 5.5 - MEDIUM | 2021-05-18 | 2021-05-25 |
| CVE-2021-31321 | Telegram Android <7.1.0 (2090), Telegram iOS <7.1, and Telegram macOS <7.1 are affected by a Stack Based Overflow in the gray... | 7.1 - HIGH | 2021-05-18 | 2021-05-25 |
| CVE-2021-31320 | Telegram Android <7.1.0 (2090), Telegram iOS <7.1, and Telegram macOS <7.1 are affected by a Heap Buffer Overflow in the VGra... | 7.1 - HIGH | 2021-05-18 | 2021-05-25 |
Known software with vulnerabilities from Telegram
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Telegram | Messenger | 1.8.2 |
| Application | Telegram | Telegram | 1.3.16 |
| Application | Telegram | Telegram Desktop | 0.10.0 |
| Application | Telegram | Telegram Messenger | 2017-12-08 |
| Application | Telegram | Web | 0.7.0 |