CVE-2021-24035
N/A
N/A
Summary
A lack of filename validation when unzipping archives prior to WhatsApp for Android v2.21.8.13 and WhatsApp Business for Android v2.21.8.13 could have allowed path traversal attacks that overwrite WhatsApp files.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| WhatsApp Business for Android | unspecified < v2.21.8.13 | affected | |
| WhatsApp for Android | unspecified < v2.21.8.13 | affected |
Weaknesses
- CWE-23: CWE-23: Relative Path Traversal
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.