logo

Critical Vulnerability in fast-mcp-telegram Exposes Telegram Sessions

ID: 329f2f53-a167-5145-81ac-9888d3b658d7

STIX ID: report--329f2f53-a167-5145-81ac-9888d3b658d7

Feed Name: ThreatCluster

Threat Score
70/100

Date Published: 2026-07-07

Date Updated: 2026-07-07

...
...

A critical path-traversal vulnerability (CVE-2026-52830) in fast-mcp-telegram (affecting versions up to 0.19.0) allows unauthorized access to Telegram MCP sessions and sensitive session data without a valid bearer token; a patch is available in version 0.19.1 and users should update immediately to mitigate risk.

Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.