How severe is CVE-2020-1905?

CVE-2020-1905 has a CVSS v3 score of 3.3 (LOW).

CVE-2020-1905

Name: whatsapp
Author: whatsapp

3.3LOW

Media ContentProvider URIs used for opening attachments in other apps were generated sequentially prior to WhatsApp for Android v2.20.185, which could have allowed a malicious third party app chosen t

发布于: 10/6/2020更新于: 11/21/2024

描述

Media ContentProvider URIs used for opening attachments in other apps were generated sequentially prior to WhatsApp for Android v2.20.185, which could have allowed a malicious third party app chosen to open the file to guess the URIs for previously opened attachments until the opener app is terminated.

AI分析AI驱动

受影响产品

whatsappwhatsapp

参考资料

https://www.whatsapp.com/security/advisories/2020/
Vendor Advisory
https://www.whatsapp.com/security/advisories/2020/
Vendor Advisory