STOCK MARKET BSE NSE

India's cybersecurity agency cautions users of breach of sensitive information via WhatsApp 

Describing the risk in detail, it said that these vulnerabilities "exist in WhatsApp applications due to a cache configuration issue and missing bounds check within the audio decoding pipeline."

Published: 17th April 2021 03:43 PM  |   Last Updated: 17th April 2021 03:43 PM   |  A+A-

Whatsapp

For representational purposes. (File photo)

By PTI

NEW DELHI: Country's cybersecurity agency CERT-In has cautioned WhatsApp users about certain vulnerabilities detected in the popular instant messaging app that could lead to breach of sensitive information.

A "high" severity rating advisory issued by the CERT-In, or the Indian Computer Emergency Response Team, said the vulnerability has been detected in software that has "WhatsApp and WhatsApp Business for Android prior to v2.21.4.18 and WhatsApp and WhatsApp Business for iOS prior to v2.21.32."

The CERT-In is the national technology arm to combat cyberattacks and guarding the Indian cyberspace.

"Multiple vulnerabilities have been reported in WhatsApp applications which could allow a remote attacker to execute arbitrary code or access sensitive information on a targeted system," the advisory issued on Saturday said.

Describing the risk in detail, it said that these vulnerabilities "exist in WhatsApp applications due to a cache configuration issue and missing bounds check within the audio decoding pipeline."

"Successful exploitation of these vulnerabilities could allow the attacker to execute arbitrary code or access sensitive information on a targeted system," it said.

The advisory added that users of the app (application) should update the latest version of WhatsApp from Google Play Store or iOS App Store to counter the vulnerability threat.



Comments

Disclaimer : We respect your thoughts and views! But we need to be judicious while moderating your comments. All the comments will be moderated by the newindianexpress.com editorial. Abstain from posting comments that are obscene, defamatory or inflammatory, and do not indulge in personal attacks. Try to avoid outside hyperlinks inside the comment. Help us delete comments that do not follow these guidelines.

The views expressed in comments published on newindianexpress.com are those of the comment writers alone. They do not represent the views or opinions of newindianexpress.com or its staff, nor do they represent the views or opinions of The New Indian Express Group, or any entity of, or affiliated with, The New Indian Express Group. newindianexpress.com reserves the right to take any or all comments down at any time.

flipboard facebook twitter whatsapp