Vulnerability in Facebook Whatsapp Desktop

CVE-2019-3571

An input validation issue affected WhatsApp Desktop versions prior to 0.3.3793 which allows malicious clients to send files to users that would be displayed with a wrong extension.

EPSS: 0.002 (47.0th percentile) — read the EPSS interpretation.

Affected products

Facebook Whatsapp Desktop — versions 0.3.3793, unspecified

Weakness classification (CWE)

CWE-116 — Improper Encoding or Escaping of Output

References

www.facebook.com/security/advisories/cve-2019-3571 (x_refsource_CONFIRM)