Whatsapp fills in a serious security vulnerability with its September update. those reports”heise.deThese are vulnerabilities that theoretically allow an attacker to implant malicious code on the user.
first weak point CVE-2022-36934, classified as “critical”. Exceeding an integer could have caused the injected code to be executed during ongoing video calls.
The second loophole CVE-2022-27492 (Rated as “high”) Also relates to the possibility of an integer overflow, which could lead to malicious code being introduced. Here, however, the origin lies in receiving prepared video files.
Users are advised to check if they have the latest version of Whatsapp installed for their platform (22.19.78 for iOS or 2.22.19.76 for Android) and update their software if necessary.
By the way: Whatsapp announced a privacy update in June. Read what this includes here.
If you want to read more about cybercrime and cyber security, Subscribe to the Swisscybersecurity.net newsletter here. On the portal you can read daily news about current threats and new defense strategies.
“Prone to fits of apathy. Zombie ninja. Entrepreneur. Organizer. Evil travel aficionado. Coffee practitioner. Beer lover.”
More Stories
Upgrade using 20 GPUs and 20 CPUs in testing [Update 3]
Raspberry Pi5 as desktop replacement after 5 months
Windows 11: Update brings ads in start menu