Threats / TeleMessage / CVE-2025-47729
CVE-2025-47729
· EUVD no mirror located
· GCVE no mirror located
Verified 2026-06-22
TeleMessage TM SGNL vulnerability
TeleMessage TM SGNL stores cleartext message copies in its archiving backend, exposing user communications to unauthorized access despite application-level encryption.
Verdict
Today item — known-exploited.
Hidden archiving functionality retains unencrypted message data server-side, enabling threat actors with backend access to intercept private communications. Active exploitation observed in the wild.
01
Is it exploitable?
— the evidence, ranked above the scoreReported exploitation
3 independent public reports of in-the-wild exploitation are cataloged.Distinct reporting sources (vendor, incident response, government); open them for the underlying claims.
Exploited in the wild
Listed in the CISA Known Exploited Vulnerabilities catalog (added 2025-05-12).
Probability (EPSS)
EPSS 0.00394 — modeled likelihood of exploitation activity.EPSS is a daily-changing model output — open the source for today's value.
Severity / affected
Affected: TeleMessage, TM SGNL. Confirm exact fixed builds in the vendor advisory.
Weakness (CWE)
Mapped to CWE-912 Hidden Functionality.CWE assignment from the public NVD record; the weakness class drives how the flaw is exploited.
WeaknessCWE-912 · Hidden Functionality
02
Who’s exploiting it?
— attribution turns risk into urgencyAttribution not established
No confirmed (advisory-backed) threat-actor attribution is established for this record. Absence of a named actor is not absence of compromise — see Coverage & confidence.
03
Why it matters
— the attack path, told twice: adversary, then board1
Front door — unauthenticated access narrative 1
Attacker
I gain unauthorized access to TeleMessage's archiving backend infrastructure through credential compromise or network exploitation.
Business
User message privacy is compromised; regulatory compliance obligations under data protection laws are violated; customer trust and brand reputation suffer material damage.
2
Keys to the kingdom — privilege/identity takeover narrative 2
Attacker
I extract cleartext message archives containing sensitive business communications, personal data, and confidential information from the backend storage.
Business
Intellectual property, trade secrets, and confidential business strategies are exposed to competitors; legal liability for data breach notification and potential regulatory fines increases.
3
Lateral reach — past segmentation narrative 3
Attacker
I leverage intercepted communications for targeted espionage, blackmail, or social engineering attacks against message senders and recipients.
Business
Customers face secondary harm from targeted attacks; TeleMessage faces litigation from affected users and loss of enterprise contracts requiring secure communications.
04
What to do
— defensible action- Remediate per the vendor advisory — confirm the fixed build for your version and verify exposure.1
Say it to the boardA vulnerability with this evidence profile is a defensible budget line, not a backlog ticket — fund the change against the proof above.
05