CVE-2023-38537

🗓️ 04 Oct 2023 19:09:58Reported by facebookType

cve🔗 web.nvd.nist.gov📰️ 1 Media mentions👁 152 Views

A race condition in network transport subsystem caused heap use-after-free issue in incoming audio/video calls leading to potential app termination or unexpected control flow

Reporter	Title	Published	Views	Family All 9
ATTACKERKB	CVE-2023-38537	4 Oct 202320:15	–	attackerkb
Circl	CVE-2023-38537	5 Oct 202300:13	–	circl
CNNVD	WhatsApp Competitive Conditions Issue Vulnerability	4 Oct 202300:00	–	cnnvd
Cvelist	CVE-2023-38537	4 Oct 202319:09	–	cvelist
EUVD	EUVD-2023-42336	3 Oct 202520:07	–	euvd
NVD	CVE-2023-38537	4 Oct 202320:15	–	nvd
Prion	Race condition	4 Oct 202320:15	–	prion
RedhatCVE	CVE-2023-38537	23 May 202504:08	–	redhatcve
Vulnrichment	CVE-2023-38537	4 Oct 202319:09	–	vulnrichment

NVD

Node

whatsapp whatsappRange<2.2338.12desktopmac_os_x

[
  {
    "defaultStatus": "affected",
    "product": "WhatsApp Desktop for Mac",
    "vendor": "Facebook",
    "versions": [
      {
        "lessThan": "2.2338.12",
        "status": "affected",
        "version": "0",
        "versionType": "semver"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "WhatsApp Desktop for Windows",
    "vendor": "Facebook",
    "versions": [
      {
        "lessThan": "2.2320.2",
        "status": "affected",
        "version": "0",
        "versionType": "semver"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "WhatsApp Business for iOS",
    "vendor": "Facebook",
    "versions": [
      {
        "lessThan": "2.23.10.77",
        "status": "affected",
        "version": "0",
        "versionType": "semver"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "WhatsApp for iOS",
    "vendor": "Facebook",
    "versions": [
      {
        "lessThan": "2.23.10.77",
        "status": "affected",
        "version": "0",
        "versionType": "semver"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "WhatsApp Business for Android",
    "vendor": "Facebook",
    "versions": [
      {
        "lessThan": "2.23.10.77",
        "status": "affected",
        "version": "0",
        "versionType": "semver"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "WhatsApp for Android",
    "vendor": "Facebook",
    "versions": [
      {
        "lessThan": "2.23.10.77",
        "status": "affected",
        "version": "0",
        "versionType": "semver"
      }
    ]
  }
]

Source	Link
whatsapp	www.whatsapp.com/security/advisories/2023/

21 Nov 2024 08:13Current

5.5Medium risk

Vulners AI Score5.5

CVSS 3.15.6

EPSS0.00111

SSVC

CWE-362