Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
whatsapp whatsapp vulnerabilities and exploits
(subscribe to this query)
9.1
CVSSv3
CVE-2021-24043
A missing bound check in RTCP flag parsing code prior to WhatsApp for Android v2.21.23.2, WhatsApp Business for Android v2.21.23.2, WhatsApp for iOS v2.21.230.6, WhatsApp Business for iOS 2.21.230.7, and WhatsApp Desktop v2.2145.0 could have allowed an out-of-bounds heap read if ...
Whatsapp Whatsapp 2.21.23.2
Whatsapp Whatsapp 2.21.230.6
Whatsapp Whatsapp 2.2145.0
Whatsapp Whatsapp Business 2.21.23.2
Whatsapp Whatsapp Business 2.21.230.7
5.9
CVSSv3
CVE-2019-3566
A bug in WhatsApp for Android's messaging logic would potentially allow a malicious individual who has taken over over a WhatsApp user's account to recover previously sent messages. This behavior requires independent knowledge of metadata for previous messages, which ar...
Whatsapp Whatsapp 2.19.52
Whatsapp Whatsapp
Whatsapp Whatsapp Business
7.8
CVSSv3
CVE-2019-11931
A stack-based buffer overflow could be triggered in WhatsApp by sending a specially crafted MP4 file to a WhatsApp user. The issue was present in parsing the elementary stream metadata of an MP4 file and could result in a DoS or RCE. This affects Android versions before 2.19.274,...
Whatsapp Whatsapp
Whatsapp Whatsapp Business
Whatsapp Whatsapp Enterprise Client
1 Article
7.5
CVSSv3
CVE-2020-1902
A user running a quick search on a highly forwarded message on WhatsApp for Android from v2.20.108 to v2.20.140 or WhatsApp Business for Android from v2.20.35 to v2.20.49 could have been sent to the Google service over plain HTTP.
Whatsapp Whatsapp
Whatsapp Whatsapp Business
9.8
CVSSv3
CVE-2020-1907
A stack overflow in WhatsApp for Android prior to v2.20.196.16, WhatsApp Business for Android prior to v2.20.196.12, WhatsApp for iOS prior to v2.20.90, WhatsApp Business for iOS prior to v2.20.90, and WhatsApp for Portal prior to v173.0.0.29.505 could have allowed arbitrary code...
Whatsapp Whatsapp
Whatsapp Whatsapp Business
4.6
CVSSv3
CVE-2020-1908
Improper authorization of the Screen Lock feature in WhatsApp and WhatsApp Business for iOS prior to v2.20.100 could have permitted use of Siri to interact with the WhatsApp application even after the phone was locked.
Whatsapp Whatsapp
Whatsapp Whatsapp Business
7.8
CVSSv3
CVE-2020-1910
A missing bounds check in WhatsApp for Android prior to v2.21.1.13 and WhatsApp Business for Android prior to v2.21.1.13 could have allowed out-of-bounds read and write if a user applied specific image filters to a specially crafted image and sent the resulting image.
Whatsapp Whatsapp
Whatsapp Whatsapp Business
8.8
CVSSv3
CVE-2020-1894
A stack write overflow in WhatsApp for Android prior to v2.20.35, WhatsApp Business for Android prior to v2.20.20, WhatsApp for iPhone prior to v2.20.30, and WhatsApp Business for iPhone prior to v2.20.30 could have allowed arbitrary code execution when playing a specially crafte...
Whatsapp Whatsapp
Whatsapp Whatsapp Business
1 Article
7.5
CVSSv3
CVE-2020-1890
A URL validation issue in WhatsApp for Android prior to v2.20.11 and WhatsApp Business for Android prior to v2.20.2 could have caused the recipient of a sticker message containing deliberately malformed data to load an image from a sender-controlled URL without user interaction.
Whatsapp Whatsapp
Whatsapp Whatsapp Business
1 Article
7.5
CVSSv3
CVE-2021-24027
A cache configuration issue prior to WhatsApp for Android v2.21.4.18 and WhatsApp Business for Android v2.21.4.18 may have allowed a third party with access to the device’s external storage to read cached TLS material.
Whatsapp Whatsapp Business
Whatsapp Whatsapp
1 Github repository
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
encryption
CVE-2024-4331
CVE-2024-26925
arbitrary code
CVE-2006-4304
CVE-2024-25458
CVE-2024-27077
reflected XSS
CVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »