Whatsapp cve. 6 displayed attachments according to their MIME type but selected the file opening han...

Whatsapp cve. 6 displayed attachments according to their MIME type but selected the file opening handler based on the attachment’s filename extension. Zero-Click iPhone Hack via WhatsApp Images : Quarkslab blog post analyzing the patch for Apple's iOS CVE-2025-43300 (a zero-click vulnerability in ImageIO via malformed DNG images, potentially exploitable through apps like WhatsApp) Fascinating patch analysis: Incredible how just 2 bytes patched CVE-2025-43300, a zero-click out-of-bounds write in Apple's ImageIO. The flaw resides in Cisco Secure FMC’s web interface and allows unauthenticated remote attackers to exploit insecure Java deserialization and execute arbitrary code as root by sending a crafted serialized object. 0), is a remote code execution issue. Sep 3, 2025 · CISA has issued an urgent advisory concerning a newly disclosed zero-day vulnerability in Meta Platforms’ WhatsApp messaging service (CVE-2025-55177). May 14, 2019 · CVE-2019-3568 Detail Description A buffer overflow vulnerability in WhatsApp VOIP stack allowed remote code execution via specially crafted series of RTCP packets sent to a target phone number. 2450. 6 days ago · The second vulnerability, tracked as CVE-2026-20131 (CVSS score of 10. Both vulnerabilities were video related and could be used to compromise your device. Information Technology Laboratory National Vulnerability Database Vulnerabilities CVE-2023-38538 A race condition in an event subsystem led to a heap use-after-free issue in established audio/video calls that could have resulted in app termination or unexpected control flow with very low probability. ejrxgeo inkzzv whvl tvxem cefydb zjhbwcrm hlwq jyjtt prkvx kjusuag