Lucene search
FacebookCVELIST:CVE-2020-1905HistoryOct 06, 2020 - 5:35 p.m.
CVE-2020-1905
2020-10-0617:35:26
CWE-340
facebook
www.cve.org
4
media contentprovider
uris
attachments
whatsapp for android
malicious third party
Media ContentProvider URIs used for opening attachments in other apps were generated sequentially prior to WhatsApp for Android v2.20.185, which could have allowed a malicious third party app chosen to open the file to guess the URIs for previously opened attachments until the opener app is terminated.
CNA Affected
[
{
"product": "WhatsApp for Android",
"vendor": "Facebook",
"versions": [
{
"status": "affected",
"version": "2.20.185"
},
{
"lessThan": "2.20.185",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
nvd
nvd
CVE-2020-1905
2020-10-06 18:15:16
cve
cve
CVE-2020-1905
2020-10-06 18:15:16
prion
prion
Open redirect
2020-10-06 18:15:00