HomeTech NewsCybersecurityWhatsApp: Critical vulnerability allows code smuggling in video calls

WhatsApp: Critical vulnerability allows code smuggling in video calls

Published on

- Advertisement -

Two vulnerabilities in calls-from-this-week/">WhatsApp allow attackers to plant malicious code on victims. Updated app versions seal the leaks.


With the WhatsApp versions called “September Update”, the developers have closed two security gaps that attackers could have used to foist malicious code on unsuspecting victims. One of the gaps is so serious that it has been classified as a critical security risk.

- Advertisement -


Neither WhatsApp nor the entries in the NIST Common Vulnerabilities and Exposures database provide any more detailed information. However, they indicate that an integer overflow during ongoing video calls could lead to the execution of injected code (CVE-2022-36934, CVSS 9.8risk “critical“).

The second vulnerability is based on a possible integer underflow that can occur when receiving carefully prepared video files. As a result, attackers could also inject malicious code, explains the note in the WhatsApp security advisory (CVE-2022-27492, CVSS 7.8, high).

The last gap concerns WhatsApp for android before version also for iOS before Version The critical vulnerability was also present in the WhatsApp versions for Android as well as before for iOS available and also affects their business versions.

- Advertisement -

Corrected versions are now available in the respective app stores. WhatsApp is currently up to date on Android. WhatsApp users should check which version is being used on their smartphone and, if necessary, migrate to a current version by uninstalling and reinstalling from the official app store of their own platform.

- Advertisement -


About six months ago, the third-party library PJSIP was struggling with vulnerabilities. This is used in WhatsApp Messenger. At the time, however, it was unclear whether the messenger itself was vulnerable as a result.

- Advertisement -

Latest articles

Elder Scrolls Online Scribes of Fate Recensione: due ottimi nuovi dungeon

Ombra su Morrowind si apre con un duetto di dungeon impegnativo e affascinante: li...

How to record audio with Adobe Podcast and make it sound like a professional

If you're reading this, chances are you're interested in recording high-quality audio for your...

More like this