Back to directory

WRITEUP #3837

Remote exploitation of a man-in-the-disk vulnerability in WhatsApp (CVE-2021-24027)

OtherMan-in-the-Disk attack

byCENSUS

Program

Meta / Facebook

Published

Apr 14, 2021

Added to HackDex

Sep 15, 2022

Read Full Writeuphttps://census-labs.com/news/2021/04/14/whatsapp-mitd-remote-exploitation-CVE-2021-24027/

▸ RELATED WRITEUPS

Data Theft in Salesforce: Manipulating Public Links

OtherSOQL injection

When Certificates Fail: A Story of Bypassed MFA in Remote Access

Other2FA / MFA bypass

SSTI in Bug Bounty Program: The Time I Played with Handlebars and Broke Stuff

Ghost In The Ppl Part 1: Byovdll

OtherUse-After-Free

Part 2: From Byovdll To Arbitrary Code Execution In Lsass

OtherUse-After-Free

Built with ❤️ by Shubham Rawat