CVE-2020-1905

Media ContentProvider URIs used for opening attachments in other apps were generated sequentially prior to WhatsApp for Android v2.20.185, which could have allowed a malicious third party app chosen to open the file to guess the URIs for previously opened attachments until the opener app is terminated.
References
Configurations

Configuration 1

cpe:2.3:a:whatsapp:whatsapp:*:*:*:*:*:android:*:*

Information

Published : 2020-10-06 06:15

Updated : 2020-10-13 03:20


NVD link : CVE-2020-1905

Mitre link : CVE-2020-1905

Products Affected
No products.
CWE