VYPR
Low severity3.3NVD Advisory· Published Oct 6, 2020· Updated Jun 17, 2026

CVE-2020-1905

CVE-2020-1905

Description

Media ContentProvider URIs used for opening attachments in other apps were generated sequentially prior to WhatsApp for Android v2.20.185, which could have allowed a malicious third party app chosen to open the file to guess the URIs for previously opened attachments until the opener app is terminated.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.

CVE-2020-1905 · Low · VYPR