PT-2019-16619 · Whatsapp · Whatsapp Desktop

Published

2019-07-16

·

Updated

2019-10-09

·

CVE-2019-3571

CVSS v2.0

6.8

Medium

VectorAV:L/AC:L/Au:S/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions WhatsApp Desktop versions prior to 0.3.3793
Description An input validation issue allows malicious clients to send files to users that would be displayed with a wrong extension.
Recommendations For versions prior to 0.3.3793, update to version 0.3.3793 or later to resolve the issue.

Fix

RCE

Information Disclosure

Improper Encoding or Escaping of Output

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-20CWE-200CWE-116

Related Identifiers

BDU:2019-03549
CVE-2019-3571

Affected Products

Whatsapp Desktop