CVE-2020-17448

Published
View on NVD ↗
CVSS v3
7.8
HIGH
CVSS v2
6.8
MEDIUM
Affected
2
PROJECTS

Description

Telegram Desktop through 2.1.13 allows a spoofed file type to bypass the Dangerous File Type Execution protection mechanism, as demonstrated by use of the chat window with a filename that lacks an extension.

telegramdesktop/tdesktop
telegramdesktop/tdesktop
Telegram Desktop messaging app
GitHubGitHub
32K
0ffsecninja/0ffsecninja.github.io
0ffsecninja/0ffsecninja.github.io
GitHubGitHub