HKCert
HKCERT logo Hong Kong Computer Emergency Response Team Coordination Centre

HKCERT logo Hong Kong Computer Emergency Response Team Coordination Centre

  

WhatsApp Multiple Vulnerabilities

Release Date: 04 / 09 / 2020
Last Update: 04 / 09 / 2020
Risk Level:  


Multiple vulnerabilities were identified in Whatsapp, a remote attacker could exploit some of these vulnerabilities to trigger elevation of privilege, remote code execution, cross-site scripting and bypass security restriction on the targeted system.

  • Cross-Site Scripting
  • Elevation of Privilege
  • Remote Code Execution
  • Security Restriction Bypass
  • WhatsApp for Android prior to v2.20.35
  • WhatsApp Business for Android prior to v2.20.20
  • WhatsApp for iPhone prior to v2.20.30
  • WhatsApp Business for iPhone prior to v2.20.30
  • WhatsApp Desktop versions prior to v0.3.4932

Before installation of the software, please visit the vendor web-site for more details.

  • Apply fixes issued by the vendor:
    Update to the latest versions of WhatsApp