Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
whatsapp vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-36934
An integer overflow in WhatsApp could result in remote code execution in an established video call.
Whatsapp Whatsapp
2.1
CVSSv2
CVE-2017-8769
Facebook WhatsApp Messenger prior to 2.16.323 for Android uses the SD card for cleartext storage of files (Audio, Documents, Images, Video, and Voice Notes) associated with a chat, even after that chat is deleted. There may be users who expect file deletion to occur upon chat del...
Whatsapp Whatsapp
7.5
CVSSv2
CVE-2018-6339
When receiving calls using WhatsApp on Android, a stack allocation failed to properly account for the amount of data being passed in. An off-by-one error meant that data was written beyond the allocated space on the stack. This issue affects WhatsApp for Android starting in versi...
Whatsapp Whatsapp
NA
CVE-2023-38537
A race condition in a network transport subsystem led to a heap use-after-free issue in established or unsilenced incoming audio/video calls that could have resulted in app termination or unexpected control flow with very low probability.
Whatsapp Whatsapp
NA
CVE-2023-38538
A race condition in an event subsystem led to a heap use-after-free issue in established audio/video calls that could have resulted in app termination or unexpected control flow with very low probability.
Whatsapp Whatsapp
7.5
CVSSv2
CVE-2018-20655
When receiving calls using WhatsApp for iOS, a missing size check when parsing a sender-provided packet allowed for a stack-based overflow. This issue affects WhatsApp for iOS prior to v2.18.90.24 and WhatsApp Business for iOS prior to v2.18.90.24.
Whatsapp Whatsapp
4.3
CVSSv2
CVE-2019-11928
An input validation issue in WhatsApp Desktop versions prior to v0.3.4932 could have allowed cross-site scripting upon clicking on a link from a specially crafted live location message.
Whatsapp Whatsapp Desktop
2 Articles
7.5
CVSSv2
CVE-2020-1889
A security feature bypass issue in WhatsApp Desktop versions prior to v0.3.4932 could have allowed for sandbox escape in Electron and escalation of privilege if combined with a remote code execution vulnerability inside the sandboxed renderer process.
Whatsapp Whatsapp Desktop
1 Article
7.5
CVSSv2
CVE-2019-11933
A heap buffer overflow bug in libpl_droidsonroids_gif prior to 1.2.19, as used in WhatsApp for Android before version 2.19.291 could allow remote malicious users to execute arbitrary code or cause a denial of service.
Libpl Droidsonroids Gif Project Libpl Droidsonroids Gif
Whatsapp Whatsapp
2 Github repositories
6.8
CVSSv2
CVE-2019-11932
A double free vulnerability in the DDGifSlurp function in decoding.c in the android-gif-drawable library before version 1.2.18, as used in WhatsApp for Android before version 2.19.244 and many other Android applications, allows remote malicious users to execute arbitrary code or ...
Whatsapp Whatsapp
Android-gif-drawable Project Android-gif-drawable
1 EDB exploit
38 Github repositories
1 Article
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
man-in-the-middle
CVE-2024-34558
CVE-2024-32674
CVE-2024-34351
XPath injection
CVE-2023-45866
CVE-2024-25528
CVE-2024-25517
path traversal
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »