WhatsApp

WhatsApp

41 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2020-1903

  • EPSS 0.16%
  • Published 06.10.2020 18:15:15
  • Last modified 21.11.2024 05:11:34

An issue when unzipping docx, pptx, and xlsx documents in WhatsApp for iOS prior to v2.20.61 and WhatsApp Business for iOS prior to v2.20.61 could have resulted in an out-of-memory denial of service. This issue would have required the receiver to exp...

7.5

CVE-2020-1902

  • EPSS 0.15%
  • Published 06.10.2020 18:15:15
  • Last modified 21.11.2024 05:11:34

A user running a quick search on a highly forwarded message on WhatsApp for Android from v2.20.108 to v2.20.140 or WhatsApp Business for Android from v2.20.35 to v2.20.49 could have been sent to the Google service over plain HTTP.

5.3

CVE-2020-1901

  • EPSS 0.38%
  • Published 06.10.2020 18:15:15
  • Last modified 21.11.2024 05:11:34

Receiving a large text message containing URLs in WhatsApp for iOS prior to v2.20.91.4 could have caused the application to freeze while processing the message.

8.8

CVE-2020-1894

  • EPSS 0.73%
  • Published 03.09.2020 21:15:10
  • Last modified 21.11.2024 05:11:33

A stack write overflow in WhatsApp for Android prior to v2.20.35, WhatsApp Business for Android prior to v2.20.20, WhatsApp for iPhone prior to v2.20.30, and WhatsApp Business for iPhone prior to v2.20.30 could have allowed arbitrary code execution w...

9.8

CVE-2020-1891

  • EPSS 0.5%
  • Published 03.09.2020 21:15:10
  • Last modified 21.11.2024 05:11:33

A user controlled parameter used in video call in WhatsApp for Android prior to v2.20.17, WhatsApp Business for Android prior to v2.20.7, WhatsApp for iPhone prior to v2.20.20, and WhatsApp Business for iPhone prior to v2.20.20 could have allowed an ...

7.5

CVE-2020-1890

  • EPSS 0.75%
  • Published 03.09.2020 21:15:10
  • Last modified 21.11.2024 05:11:33

A URL validation issue in WhatsApp for Android prior to v2.20.11 and WhatsApp Business for Android prior to v2.20.2 could have caused the recipient of a sticker message containing deliberately malformed data to load an image from a sender-controlled ...

8.8

CVE-2020-1886

  • EPSS 0.48%
  • Published 03.09.2020 21:15:10
  • Last modified 21.11.2024 05:11:32

A buffer overflow in WhatsApp for Android prior to v2.20.11 and WhatsApp Business for Android prior to v2.20.2 could have allowed an out-of-bounds write via a specially crafted video stream after receiving and answering a malicious video call.

8.2

CVE-2019-18426

Warning Exploit
  • EPSS 51.2%
  • Published 21.01.2020 21:15:16
  • Last modified 21.03.2025 19:40:58

A vulnerability in WhatsApp Desktop versions prior to 0.3.9309 when paired with WhatsApp for iPhone versions prior to 2.20.10 allows cross-site scripting and local file reading. Exploiting the vulnerability requires the victim to click a link preview...

7.8

CVE-2019-11931

  • EPSS 0.47%
  • Published 14.11.2019 23:15:10
  • Last modified 21.11.2024 04:22:00

A stack-based buffer overflow could be triggered in WhatsApp by sending a specially crafted MP4 file to a WhatsApp user. The issue was present in parsing the elementary stream metadata of an MP4 file and could result in a DoS or RCE. This affects And...

9.8

CVE-2019-11933

  • EPSS 7.31%
  • Published 23.10.2019 16:15:11
  • Last modified 21.11.2024 04:22:00

A heap buffer overflow bug in libpl_droidsonroids_gif before 1.2.19, as used in WhatsApp for Android before version 2.19.291 could allow remote attackers to execute arbitrary code or cause a denial of service.