CERT-In flags security flaw in WhatsApp Desktop version

The Indian Computer Emergency Response Team (CERT-In) has issued a high-risk warning for WhatsApp users who access the platform on desktop computers. The agency, which functions under the ministry of electronics and information technology (MeitY), flagged the issue in an advisory published on April 9.

CERT-In said the vulnerability is caused by the way WhatsApp handles certain file types. “The vulnerability exists due to misconfiguration between the MIME type and file extension, leading to improper handling of attachment openings. An attacker could…