CVE-2021-31320

EPSS 0.79% · P74 Updated Feb 25, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2021-31320

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Telegram Android <7.1.0 (2090), Telegram iOS <7.1, and Telegram macOS <7.1 are affected by a Heap Buffer Overflow in the VGradientCache::generateGradientColorTable function of their custom fork of the rlottie library. A remote attacker might be able to overwrite heap memory out-of-bounds on a victim device via a malicious animated sticker.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Telegram 缓冲区错误漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Telegram是一款即时通信移动应用程序。 Telegram 7.1.0之前版本存在缓冲区错误漏洞，该漏洞源于都受到rlottie库的自定义分支的VGradientCache::generateGradientColorTable函数中堆缓冲区溢出的影响。远程攻击者可利用该漏洞访问受害者设备上超出范围的堆内存。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2021-31320

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2021-31320

请登录查看更多情报信息。

Same Patch Batch · n/a · 2021-05-18 · 39 CVEs total

CVE-2020-20254		Mikrotik RouterOs 代码问题漏洞
CVE-2021-32305		websvn 操作系统命令注入漏洞
CVE-2020-20951		Pluck 命令注入漏洞
CVE-2020-24740		Pluck 跨站请求伪造漏洞
CVE-2020-23861		GNU LibreDWG 缓冲区错误漏洞
CVE-2021-32238		Epic Games Rocket League 缓冲区错误漏洞
CVE-2020-23856		GNU cflow 资源管理错误漏洞
CVE-2020-24026		TinyShop 跨站脚本漏洞
CVE-2020-23852		ffjpeg 缓冲区错误漏洞
CVE-2020-23851		ffjpeg 缓冲区错误漏洞
CVE-2021-3200		libsolv 缓冲区错误漏洞
CVE-2020-20253		MikroTik RouterOS 数字错误漏洞
CVE-2021-30145		node-mpv 格式化字符串错误漏洞
CVE-2021-22117		Pivotal Software RabbitMQ 代码注入漏洞
CVE-2020-25709		OpenLDAP 安全漏洞
CVE-2002-2438		TCP 授权问题漏洞
CVE-2021-3518		libxml2 资源管理错误漏洞
CVE-2021-31827		Progress Software MOVEit Transfer SQL注入漏洞
CVE-2021-3531		Red Hat Ceph 输入验证错误漏洞
CVE-2020-20245		MikroTik RouterOS 缓冲区错误漏洞

Showing top 20 of 39 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2021-31320

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2021-31320

I. Basic Information for CVE-2021-31320

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2021-31320

III. Intelligence Information for CVE-2021-31320

Same Patch Batch · n/a · 2021-05-18 · 39 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2021-31320

Leave a comment