Severity
Medium
Analysis Summary
CVE-2021-24027
A local authenticated attacker is acquiring informative data caused by a cache configuration issue. Attacker is sending a specially-crafted request attacker could exploit this vulnerability in order to gain cached TLS information.
Impact
Unauthorized Access
Affected Vendors
Affected Products
- WhatsApp for Android 2.21
- WhatApp Business for Andorid 2.21
Remediation
Refer to WhatsApp Security Advisories for patch, upgrade or suggested workaround information. See References.