Telegram EvilVideo Vulnerability Exploited to Execute Malicious Code on Victim Device
Posted: Fri Mar 07, 2025 5:02 pm
A critical evolution of the CVE-2024-7014 vulnerability, originally patched in July 2024, has resurfaced with updated tactics to bypass security measures.
Dubbed Evilloader, this new exploit leverages Telegram’s multimedia handling mechanisms to execute malicious JavaScript code by disguising .htm files as video content.
https://cybersecuritynews.com/telegram- ... exploited/
Dubbed Evilloader, this new exploit leverages Telegram’s multimedia handling mechanisms to execute malicious JavaScript code by disguising .htm files as video content.
https://cybersecuritynews.com/telegram- ... exploited/