CVE-2021-24041

Summary

A missing bounds check in image blurring code prior to WhatsApp for Android v2.21.22.7 and WhatsApp Business for Android v2.21.22.7 could have allowed an out-of-bounds write if a user sent a malicious image.

Affected Software

VendorProductVersion RangeStatus
FacebookWhatsApp Business for Androidunspecified < v2.21.22.7affected
FacebookWhatsApp Business for Androidv2.21.22.7 < unspecifiedunaffected
FacebookWhatsApp for Androidunspecified < v2.21.22.7affected
FacebookWhatsApp for Androidv2.21.22.7 < unspecifiedunaffected

Weaknesses

  • CWE-122: Heap-based Buffer Overflow (CWE-122)

ADP Enrichment

CVE Program Container

Additional References

References