Vulnerabilities > CVE-2019-3568 - Out-of-bounds Write vulnerability in Whatsapp
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
A buffer overflow vulnerability in WhatsApp VOIP stack allowed remote code execution via specially crafted series of RTCP packets sent to a target phone number. The issue affects WhatsApp for Android prior to v2.19.134, WhatsApp Business for Android prior to v2.19.44, WhatsApp for iOS prior to v2.19.51, WhatsApp Business for iOS prior to v2.19.51, WhatsApp for Windows Phone prior to v2.18.348, and WhatsApp for Tizen prior to v2.18.15.
Vulnerable Configurations
Common Weakness Enumeration (CWE)
The Hacker News
id THN:B06A79D66E7F4CAF253543C9F657BE2A last seen 2019-05-14 modified 2019-05-14 published 2019-05-14 reporter The Hacker News source https://thehackernews.com/2019/05/hack-whatsapp-vulnerability.html title Hackers Used WhatsApp 0-Day Flaw to Secretly Install Spyware On Phones id THN:65EF8C52B8107803C17015B2AFC6A872 last seen 2019-10-30 modified 2019-10-29 published 2019-10-29 reporter The Hacker News source https://thehackernews.com/2019/10/whatsapp-nso-group-malware.html title Facebook Sues Israeli NSO Spyware Firm For Hacking WhatsApp Users