New Delhi: After detecting certain high risk vulnerabilities in the messaging giant, India’s cyber security agency issued high severity security warning for WhatsApp users in the country, which could lead to a breach of sensitive information of its users.
The CERT-In or the Indian Computer Emergency Response Team has issued a “high” severity rating advisory. The agency asserted that vulnerability was discovered in software that has “WhatsApp and WhatsApp Business for Android prior to v184.108.40.206 and WhatsApp and WhatsApp Business for iOS prior to v2.21.32.”
The CERT-In is the national technology arm that tackles cyber attacks and guards Indian cyberspace.
The advisory reads, “Multiple vulnerabilities have been reported in WhatsApp applications which could allow a remote attacker to execute arbitrary code or access sensitive information on a targeted system”.
Explaining the details of these vulnerabilities, the advisory notes that these “exist in WhatsApp applications due to a cache configuration issue and missing bounds check within the audio decoding pipeline.”
“Successful exploitation of these vulnerabilities could allow the attacker to execute arbitrary code or access sensitive information on a targeted system,” it added.
The agency in it’s advisory stated that WhatsApp users should update to the latest version of the app from the Google Play Store or iOS App Store in order to counter this vulnerability threat.