CVE-2020-1886

Summary

A buffer overflow in WhatsApp for Android prior to v2.20.11 and WhatsApp Business for Android prior to v2.20.2 could have allowed an out-of-bounds write via a specially crafted video stream after receiving and answering a malicious video call.

Affected Software

VendorProductVersion RangeStatus
FacebookWhatsApp for Android2.20.11affected
FacebookWhatsApp for Androidunspecified < 2.20.11affected
FacebookWhatsApp Business for Android2.20.2affected
FacebookWhatsApp Business for Androidunspecified < 2.20.2affected

Weaknesses

  • CWE-120: CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

ADP Enrichment

CVE Program Container

Additional References

References