24 November 2023

Security I Trust

Helping you build Security and Trust

CVE-2022-36934 Critical WhatsApp Bugs Could Have Let Attackers Hack Devices Remotely

1 min read
1 year ago Security I Trust

CVE-2022-36934 Critical WhatsApp Bugs Could Have Let Attackers Hack Devices Remotely

Risk: Critical
CVE ID: CVE-2022-36934
CVSS Score: 9.8
Impacted Product: WhatsApp and WhatsApp Business for Android and iOS Up to 2.22.16.12
CVE-ID: CWE-190 & CWE-122
Published Date: 03 Oct 2022
Updated:

Vulnerability Threat & Description:
An integer overflow vulnerability in WhatsApp leading to remote code execution in an established video call. An attacker can exploit this vulnerability by manipulating the WhatsApp component Video Call Handler so that a heap-based buffer overflow can be triggered and WhatsApp Messenger can be taken over.

Remediation Level: Install Vender Security Update
Attack Vector: Network
Authentication requested: None
Privileges Required: None
Patch Available: Yes
Public Exploit available:
Attack Complexity: Low
User Interaction: None
Impact on:
• Confidentiality: High
• Integrity: None
• Availability: None

More Info:

 

More Stories

1 min read

CVE-2023-36884 Office and Windows HTML Remote Code Execution Vulnerability

4 months ago Security I Trust
1 min read

CVE-2023-36874 Windows Error Reporting Service Elevation of Privilege Vulnerability

4 months ago Security I Trust
1 min read

CVE-2023-35311 Microsoft Outlook Security Feature Bypass Vulnerability

4 months ago Security I Trust

You may have missed

NIST CSF 2.0 1 min read

NIST Cybersecurity Framework 2.0 Draft (CFS 2)

2 months ago Security I Trust
1 min read

How to identify Facebook MarketPlace Scams

2 months ago Security I Trust
Identify The Risks Associated with New Critical Vulnerabilities 1 min read

Identify The Risks Associated with New Critical Vulnerabilities

2 months ago Security I Trust
1 min read

CVE-2023-36884 Office and Windows HTML Remote Code Execution Vulnerability

4 months ago Security I Trust