WhatsApp wants you to update the app urgently, here’s why – Times of India
WhatsApp has revealed two critical zero-day vulnerabilities that have been fixed in the latest version of the app but could still pose a threat to users’ having the older version of the app installed on their phones.
These two critical vulnerabilities have been detailed on WhatsApp’s Security Advisories page. These bugs came to light on September 23, and have been fixed now with the latest update.
The two critical vulnerabilities with identification numbers — CVE-2022-36934 and CVE-2022-27492 — affected WhatsApp for Android, iOS, and Business for Android, iOS apps.
The CVE-2022-3934 has been given a severity score of 9.8 out of 10, making it a ‘critical’ threat. Meanwhile, the CVE-2022-27492 has been marked as a ‘high’ risk threat with a score of 7.8 out of 10 on the CVE scale.
The critical bugs would allow a bad actor to exploit a code error known as an integer overflow, allowing remote code execution on one’s smartphone during an “established video call” or through a “specially crafted video file.”
Both of these zero-day vulnerabilities have been patched in recent releases of WhatsApp. So, it is highly advised to update WhatsApp to the latest version on your phone.
Although, these bugs could still be a threat to users’ of previous versions of WhatsApp. As per the security advisory, the bug could affect: WhatsApp for Android prior to v2.22.16.12, WhatsApp for iOS prior to v2.22.16.12 WhatsApp Business for Android prior to v2.22.16.12 and WhatsApp Business for iOS prior to v2.22.16.12.
These two critical vulnerabilities have been detailed on WhatsApp’s Security Advisories page. These bugs came to light on September 23, and have been fixed now with the latest update.
The two critical vulnerabilities with identification numbers — CVE-2022-36934 and CVE-2022-27492 — affected WhatsApp for Android, iOS, and Business for Android, iOS apps.
The CVE-2022-3934 has been given a severity score of 9.8 out of 10, making it a ‘critical’ threat. Meanwhile, the CVE-2022-27492 has been marked as a ‘high’ risk threat with a score of 7.8 out of 10 on the CVE scale.
The critical bugs would allow a bad actor to exploit a code error known as an integer overflow, allowing remote code execution on one’s smartphone during an “established video call” or through a “specially crafted video file.”
Both of these zero-day vulnerabilities have been patched in recent releases of WhatsApp. So, it is highly advised to update WhatsApp to the latest version on your phone.
Although, these bugs could still be a threat to users’ of previous versions of WhatsApp. As per the security advisory, the bug could affect: WhatsApp for Android prior to v2.22.16.12, WhatsApp for iOS prior to v2.22.16.12 WhatsApp Business for Android prior to v2.22.16.12 and WhatsApp Business for iOS prior to v2.22.16.12.
For all the latest Technology News Click Here
For the latest news and updates, follow us on Google News.
Denial of responsibility! NewsBit.us is an automatic aggregator around the global media. All the content are available free on Internet. We have just arranged it in one platform for educational purpose only. In each content, the hyperlink to the primary source is specified. All trademarks belong to their rightful owners, all materials to their authors. If you are the owner of the content and do not want us to publish your materials on our website, please contact us by email – [email protected]. The content will be deleted within 24 hours.