Buffer overflow in Facebook Whatsapp Business For Android

CVE-2020-1907

A stack overflow in WhatsApp for Android prior to v2.20.196.16, WhatsApp Business for Android prior to v2.20.196.12, WhatsApp for iOS prior to v2.20.90, WhatsApp Business for iOS prior to v2.20.90, and WhatsApp for Portal prior to v173.0.0…

Vulnerability class: Buffer Overflow

EPSS: 0.011 (78.2th percentile) — read the EPSS interpretation.

Affected products

Facebook Whatsapp Business For Android — versions 2.20.196.12, unspecified
Facebook Whatsapp Business For Ios — versions 2.20.90, unspecified
Facebook Whatsapp For Android — versions 2.20.196.16, unspecified
Facebook Whatsapp For Ios — versions 2.20.90, unspecified
Facebook Whatsapp For Portal — versions 173.0.0.29.505, unspecified

Weakness classification (CWE)

CWE-787 — Out-of-bounds Write

References

www.whatsapp.com/security/advisories/2020/ (x_refsource_CONFIRM)