A lack of filename validation when unzipping archives prior to WhatsApp for Android v2.21.8.13 and WhatsApp Business for Android v2.21.8.13 could have allowed path traversal attacks that overwrite WhatsApp files.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://www.whatsapp.com/security/advisories/2021/ |
![]() ![]() |
History
Wed, 03 Sep 2025 17:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Whatsapp whatsapp Business
|
|
CPEs | cpe:2.3:a:whatsapp:whatsapp_business:*:*:*:*:*:android:*:* | |
Vendors & Products |
Whatsapp whatsapp Business
|

Status: PUBLISHED
Assigner: facebook
Published:
Updated: 2024-08-03T19:21:17.185Z
Reserved: 2021-01-13T00:00:00
Link: CVE-2021-24035

No data.

Status : Modified
Published: 2021-06-11T04:15:08.887
Modified: 2025-09-03T17:36:53.303
Link: CVE-2021-24035

No data.

No data.