CVE advisoryKnown Exploit
CVE-2025-47729
TeleMessage Archiver Holds Cleartext User Messages.
Halo Surface Signal: 2 out of 5 — less likely to be public-facing.
The TeleMessage archiving backend holds cleartext copies of user messages, contrary to documented encryption. This impacts organizations using the TM SGNL app, potentially exposing sensitive communications. The vulnerability was exploited in May 2025 and is listed in the CISA Known Exploited Vulnerabilities catalog. Th