CVE-2021-24027

Summary

A cache configuration issue prior to WhatsApp for Android v2.21.4.18 and WhatsApp Business for Android v2.21.4.18 may have allowed a third party with access to the device’s external storage to read cached TLS material.

Affected Software

VendorProductVersion RangeStatus
FacebookWhatsApp Business for Androidv2.21.4.18affected
FacebookWhatsApp for Androidunspecified < v2.21.4.18affected

Weaknesses

  • CWE-524: CWE-524

ADP Enrichment

CVE Program Container

Additional References

References