CVE-2021-36769

Source
https://cve.org/CVERecord?id=CVE-2021-36769
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-36769.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2021-36769
Downstream
Published
2021-07-17T00:15:07.847Z
Modified
2026-02-24T01:22:08.687927Z
Severity
  • 5.3 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N CVSS Calculator
Summary
[none]
Details

A reordering issue exists in Telegram before 7.8.1 for Android, Telegram before 7.8.3 for iOS, and Telegram Desktop before 2.8.8. An attacker can cause the server to receive messages in a different order than they were sent a client.

References

Affected packages

Git / github.com/drklo/telegram

Affected ranges

Type
GIT
Repo
https://github.com/drklo/telegram
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed

Affected versions

release-5.*
release-5.13.0_1818
release-5.13.0_1819
release-5.13.0_1820
release-5.13.0_1821
release-5.13.0_1823
release-5.13.1_1826
release-5.13.1_1829
release-5.14.0_1846
release-5.14.0_1849
release-5.14.0_1851
release-5.15.0_1864
release-5.15.0_1866
release-5.15.0_1867
release-5.15.0_1868
release-5.15.0_1869
release-6.*
release-6.0.0_1908
release-6.0.1_1910
release-6.0.1_1911
release-6.1.0_1938
release-6.1.0_1940
release-6.1.0_1941
release-6.1.1_1945
release-6.1.1_1946
release-6.2.0_1984
release-6.2.0_1985
release-6.2.0_1986
release-6.2.0_1988
release-6.3.0_2040
release-6.3.0_2042
release-7.*
release-7.0.0_2060
release-7.0.0_2061
release-7.0.0_2064
release-7.0.1_2065
release-7.1.0_2090
release-7.1.0_2092
release-7.1.1_2094
release-7.1.1_2096
release-7.1.2_2098
release-7.1.3_2100
release-7.1.3_2103
release-7.2.0_2128
release-7.2.0_2134
release-7.2.1_2135
release-7.2.1_2136
release-7.2.1_2137
release-7.2.1_2139
release-7.3.0_2195
release-7.3.0_2196
release-7.3.0_2197
release-7.3.0_2206
release-7.4.0_2221
release-7.4.0_2223
release-7.4.1_2225
release-7.4.2_2227
release-7.5.0_2243
release-7.5.0_2244
release-7.5.0_2245
release-7.5.0_2246
release-7.6.0_2264
release-7.6.1_2274
release-7.7.0_2284
release-7.7.1_2291
release-7.7.2_2293
release-7.8.0_2360

Database specific

source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-36769.json"