Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
whatsapp vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-27492
An integer underflow in WhatsApp could have caused remote code execution when receiving a crafted video file.
Whatsapp Whatsapp
NA
CVE-2022-36934
An integer overflow in WhatsApp could result in remote code execution in an established video call.
Whatsapp Whatsapp
6.8
CVSSv2
CVE-2019-11927
An integer overflow in WhatsApp media parsing libraries allows a remote malicious user to perform an out-of-bounds write on the heap via specially-crafted EXIF tags in WEBP images. This issue affects WhatsApp for Android before version 2.19.143 and WhatsApp for iOS before version...
Whatsapp Whatsapp
7.5
CVSSv2
CVE-2019-3568
A buffer overflow vulnerability in WhatsApp VOIP stack allowed remote code execution via specially crafted series of RTCP packets sent to a target phone number. The issue affects WhatsApp for Android prior to v2.19.134, WhatsApp Business for Android prior to v2.19.44, WhatsApp fo...
Whatsapp Whatsapp
7 Github repositories
4 Articles
5
CVSSv2
CVE-2020-1901
Receiving a large text message containing URLs in WhatsApp for iOS prior to v2.20.91.4 could have caused the application to freeze while processing the message.
Whatsapp Whatsapp
6.4
CVSSv2
CVE-2021-24035
A lack of filename validation when unzipping archives prior to WhatsApp for Android v2.21.8.13 and WhatsApp Business for Android v2.21.8.13 could have allowed path traversal attacks that overwrite WhatsApp files.
Whatsapp Whatsapp
5
CVSSv2
CVE-2018-6344
A heap corruption in WhatsApp can be caused by a malformed RTP packet being sent after a call is established. The vulnerability can be used to cause denial of service. It affects WhatsApp for Android prior to v2.18.293, WhatsApp for iOS prior to v2.18.93, and WhatsApp for Windows...
Whatsapp Whatsapp
7.5
CVSSv2
CVE-2018-6350
An out-of-bounds read was possible in WhatsApp due to incorrect parsing of RTP extension headers. This issue affects WhatsApp for Android before 2.18.276, WhatsApp Business for Android before 2.18.99, WhatsApp for iOS before 2.18.100.6, WhatsApp Business for iOS before 2.18.100.2...
Whatsapp Whatsapp
5
CVSSv2
CVE-2019-3571
An input validation issue affected WhatsApp Desktop versions before 0.3.3793 which allows malicious clients to send files to users that would be displayed with a wrong extension.
Whatsapp Whatsapp
2.1
CVSSv2
CVE-2017-8769
Facebook WhatsApp Messenger prior to 2.16.323 for Android uses the SD card for cleartext storage of files (Audio, Documents, Images, Video, and Voice Notes) associated with a chat, even after that chat is deleted. There may be users who expect file deletion to occur upon chat del...
Whatsapp Whatsapp
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »