What is CVE-2020-1889?

CVE-2020-1889 is a vulnerability in Facebook Whatsapp Desktop, classified under CWE-265. Published 2020-09-03.

Is CVE-2020-1889 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Facebook Whatsapp Desktop

CVE-2020-1889

A security feature bypass issue in WhatsApp Desktop versions prior to v0.3.4932 could have allowed for sandbox escape in Electron and escalation of privilege if combined with a remote code execution vulnerability inside the sandboxed rende…

EPSS: 0.005 (66.6th percentile) — read the EPSS interpretation.

Affected products

Facebook Whatsapp Desktop — versions 0.3.4932, unspecified

Weakness classification (CWE)

CWE-265

Public proof-of-concept exploits

404notf0und/CVE-Flow

References

www.whatsapp.com/security/advisories/2020/ (x_refsource_CONFIRM)

Frequently asked questions

What is CVE-2020-1889?: CVE-2020-1889 is a vulnerability in Facebook Whatsapp Desktop, classified under CWE-265. Published 2020-09-03.
Is CVE-2020-1889 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.