Path Traversal Vulnerability in WhatsApp and WhatsApp Business for Android
CVE-2021-24035
9.1CRITICAL
What is CVE-2021-24035?
A vulnerability exists in WhatsApp for Android and WhatsApp Business for Android due to inadequate filename validation when extracting archives. This flaw could enable attackers to conduct path traversal attacks, potentially leading to overwriting files within the application. Users of affected versions should be cautious and consider updating to the latest versions to mitigate risk.
Affected Version(s)
WhatsApp Business for Android < unspecified
WhatsApp for Android < unspecified