Path Traversal Vulnerability in WhatsApp for iOS and WhatsApp Business for iOS

Path Traversal Vulnerability in WhatsApp for iOS and WhatsApp Business for iOS

CVE-2020-1904 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

A path validation issue in WhatsApp for iOS prior to v2.20.61 and WhatsApp Business for iOS prior to v2.20.61 could have allowed for directory traversal overwriting files when sending specially crafted docx, xlsx, and pptx files as attachments to messages.

Learn more about our Cis Benchmark Audit For Apple Ios.