India's cyber security agency CERT-In has issued an advisory to WhatsApp users, warning them about certain vulnerabilities detected in the popular instant messaging app that could lead to dissemination of sensitive information.
In its advisory, which has been categorised under a “high” severity rating, Cert-In has stated that the vulnerability has been detected in software that has "WhatsApp and WhatsApp Business for Android prior to v184.108.40.206 and WhatsApp and WhatsApp Business for iOS prior to v2.21.32."
CERT-In is the national technology arm to combat cyberattacks and guard the Indian cyber space.
"Multiple vulnerabilities have been reported in WhatsApp applications which could allow a remote attacker to execute arbitrary code or access sensitive information on a targeted system," the advisory issued on Saturday said.
Describing the risk in detail, it said that these vulnerabilities "exist in WhatsApp applications due to a cache configuration issue and missing bounds check within the audio decoding pipeline."
"Successful exploitation of these vulnerabilities could allow the attacker to execute arbitrary code or access sensitive information on a targeted system," it said.
The advisory added that users of the app (application) should update the latest version of WhatsApp from Google Play store or iOS App Store to counter the vulnerability threat.
(With PTI inputs)