Lucene search
China National Vulnerability DatabaseCNVD-2022-70585HistorySep 26, 2022 - 12:00 a.m.
WhatsApp numerical error vulnerability
2022-09-2600:00:00
China National Vulnerability Database
www.cnvd.org.cn
10
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
WhatsApp is a set of mobile applications from WhatsApp, Inc. that uses the Internet to send text messages. WhatsApp has a numeric error vulnerability that originates from integer underflow and can be exploited by attackers to cause remote code execution.
| CPE | Name | Operator | Version |
|---|---|---|---|
| WhatsApp WhatsApp for iPhone <2. | eq | 22.15.9 | |
| WhatsApp Whatsapp Android <2. | eq | 22.16.2 |
Related
prion
prion
Integer overflow
2022-09-23 14:15:00
cve
cve
CVE-2022-27492
2022-09-23 14:15:00
thn
thn
Critical WhatsApp Bugs Could Have Let Attackers Hack Devices Remotely
2022-09-28 05:03:00
qualysblog
qualysblog
malwarebytes
malwarebytes
Critical WhatsApp vulnerabilities patched: Check you've updated!
2022-09-26 10:00:00
4 over-hyped security vulnerabilities of 2022
2022-12-19 01:00:00
nessus
nessus
Oracle Linux 8 : istio (ELSA-2023-12356)
2023-05-26 00:00:00
Oracle Linux 7 : istio (ELSA-2023-12357)
2023-05-26 00:00:00
Oracle Linux 7 : istio (ELSA-2023-12355)
2023-05-26 00:00:00
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Related for CNVD-2022-70585