The vulnerability was found in “WhatsApp and WhatsApp Business for Android prior to v220.127.116.11 and WhatsApp and WhatsApp Business for iOS prior to v2.21.32,” according to the agency.
The Indian government’s cybersecurity office has issued a warning to WhatsApp users in the nation about vulnerabilities discovered in the messaging service. These flaws may lead to a data breach involving WhatsApp users’ personal information.
The Indian Computer Emergency Response Team, often known as CERT-In, has issued a “high” severity rating warning. The vulnerability was found in “WhatsApp and WhatsApp Business for Android prior to v18.104.22.168 and WhatsApp and WhatsApp Business for iOS prior to v2.21.32,” according to the agency.
The CERT-In is India’s national technology arm, which combats cyber-attacks and protects the country’s cyberspace.
“Multiple vulnerabilities have been discovered in WhatsApp apps,” the warning says. “These vulnerabilities may enable a remote attacker to execute arbitrary code or access sensitive information on a targeted machine.”
The vulnerabilities “exist in WhatsApp apps owing to a cache configuration problem and missing bounds checks inside the audio decoding pipeline,” according to the warning.
“Successful exploitation of these vulnerabilities may enable an attacker to execute arbitrary code or gain access to sensitive data on a targeted machine,” it said.
According to CERT-warning, In’s WhatsApp users should upgrade to the most recent version of the program from the Google Play Store or the iOS App Store to avoid the security danger.