CVE-2020-1895

Name of the Vulnerable Software and Affected Versions Instagram for Android versions prior to 128.0.0.26.128

Description A large heap overflow could occur when attempting to upload an image with specially crafted dimensions. This issue could have allowed remote attackers to take control over targeted devices by sending victims a specially crafted image.

Recommendations For versions prior to 128.0.0.26.128, update to version 128.0.0.26.128 or later to resolve the issue. As a temporary workaround, consider avoiding the upload of images with unusual dimensions until a patch is applied. Restrict access to image upload functionality to minimize the risk of exploitation.