Description

The TeleMessage archiving backend through 2025-05-05 holds cleartext copies of messages from TM SGNL (aka Archive Signal) app users, which is different functionality than described in the TeleMessage "End-to-End encryption from the mobile phone through to the corporate archive" documentation, as exploited in the wild in May 2025.

INFO

Published Date :

2025-05-08T00:00:00.000Z

Last Modified :

2025-10-21T22:55:16.821Z

Source :

mitre
AFFECTED PRODUCTS

The following products are affected by CVE-2025-47729 vulnerability.

Vendors Products
Telemessage
  • Text Message Archiver
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-47729.

URL Resource
https://arstechnica.com/security/2025/05/signal-clone-used-by-trump-official-stops-operations-after-report-it-was-hacked/ cve-icon cve-icon
https://news.ycombinator.com/item?id=43909220 cve-icon cve-icon
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-47729 cve-icon cve-icon
https://www.theregister.com/2025/05/05/telemessage_investigating/ cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact