Critical severity9.1NVD Advisory· Published Jun 11, 2021· Updated Jun 17, 2026
CVE-2021-24035
CVE-2021-24035
Description
A lack of filename validation when unzipping archives prior to WhatsApp for Android v2.21.8.13 and WhatsApp Business for Android v2.21.8.13 could have allowed path traversal attacks that overwrite WhatsApp files.
Affected products
3- Range: <=2.21.8.13
unspecified+ 1 more
- (no CPE)range: unspecified
- (no CPE)range: unspecified
Patches
Vulnerability mechanics
References
1- www.whatsapp.com/security/advisories/2021/nvdVendor Advisory
News mentions
0No linked articles in our index yet.