CVE-2020-1901

2020-10-0617:35:24

CWE-400

facebook

www.cve.org

5 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

39.7%

JSON

Receiving a large text message containing URLs in WhatsApp for iOS prior to v2.20.91.4 could have caused the application to freeze while processing the message.

CNA Affected

[
  {
    "product": "WhatsApp for iOS",
    "vendor": "Facebook",
    "versions": [
      {
        "status": "affected",
        "version": "2.20.91.4"
      },
      {
        "lessThan": "2.20.91.4",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

References

www.whatsapp.com/security/advisories/2020/