Lucene search
FacebookCVELIST:CVE-2018-6344HistoryDec 31, 2018 - 10:00 p.m.
CVE-2018-6344
2018-12-3122:00:00
CWE-122
facebook
www.cve.org
1
0.002 Low
EPSS
Percentile
52.2%
A heap corruption in WhatsApp can be caused by a malformed RTP packet being sent after a call is established. The vulnerability can be used to cause denial of service. It affects WhatsApp for Android prior to v2.18.293, WhatsApp for iOS prior to v2.18.93, and WhatsApp for Windows Phone prior to v2.18.172.
CNA Affected
[
{
"product": "WhatsApp for Android",
"vendor": "Facebook",
"versions": [
{
"status": "affected",
"version": "2.18.293"
},
{
"lessThan": "2.18.293",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
},
{
"product": "WhatsApp for iOS",
"vendor": "Facebook",
"versions": [
{
"status": "affected",
"version": "2.18.93"
},
{
"lessThan": "2.18.93",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
},
{
"product": "WhatsApp for Windows Phone",
"vendor": "Facebook",
"versions": [
{
"status": "affected",
"version": "2.18.172"
},
{
"lessThan": "2.18.172",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
googleprojectzero
googleprojectzero
Adventures in Video Conferencing Part 3: The Even Wilder World of WhatsApp
2018-12-11 00:00:00
cve
cve
CVE-2018-6344
2018-12-31 22:29:00
prion
prion
Heap overflow
2018-12-31 22:29:00
nvd
nvd
CVE-2018-6344
2018-12-31 22:29:00