A lack of filename validation when unzipping archives prior to WhatsApp for Android v2.21.8.13 and WhatsApp Business for Android v2.21.8.13 could have allowed path traversal attacks that overwrite WhatsApp files.
History

Wed, 03 Sep 2025 17:45:00 +0000

Type Values Removed Values Added
First Time appeared Whatsapp whatsapp Business
CPEs cpe:2.3:a:whatsapp:whatsapp:*:*:*:*:business:android:*:* cpe:2.3:a:whatsapp:whatsapp_business:*:*:*:*:*:android:*:*
Vendors & Products Whatsapp whatsapp Business

cve-icon MITRE

Status: PUBLISHED

Assigner: facebook

Published:

Updated: 2024-08-03T19:21:17.185Z

Reserved: 2021-01-13T00:00:00

Link: CVE-2021-24035

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2021-06-11T04:15:08.887

Modified: 2025-09-03T17:36:53.303

Link: CVE-2021-24035

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.