Candidate: CVE-2020-12474
PublicDate: 2020-05-01 14:15:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12474
 https://github.com/VijayT007/Vulnerability-Database/blob/master/Telegram:CVE-2020-12474
Description:
 Telegram Desktop through 2.0.1, Telegram through 6.0.1 for Android, and
 Telegram through 6.0.1 for iOS allow an IDN Homograph attack via Punycode
 in a public URL or a group chat invitation URL.
Ubuntu-Description:
Notes:
Mitigation:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N [6.5 MEDIUM]


Patches_telegram-desktop:
upstream_telegram-desktop: needs-triage
precise/esm_telegram-desktop: DNE
trusty_telegram-desktop: ignored (out of standard support)
trusty/esm_telegram-desktop: DNE
xenial_telegram-desktop: DNE
bionic_telegram-desktop: needs-triage
eoan_telegram-desktop: ignored (reached end-of-life)
focal_telegram-desktop: needs-triage
groovy_telegram-desktop: not-affected (2.1.0+ds-1)
hirsute_telegram-desktop: not-affected (2.1.0+ds-1)
impish_telegram-desktop: not-affected (2.1.0+ds-1)
jammy_telegram-desktop: not-affected (2.1.0+ds-1)
devel_telegram-desktop: not-affected (2.1.0+ds-1)