Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.ANDROID_CVE-2019-18426.NBIN
HistoryMar 08, 2024 - 12:00 a.m.

Android Buffer Overflow in WhatsApp (CVE-2019-3568)

2024-03-0800:00:00
This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
32
buffer overflow
whatsapp
remote code execution
rtcp
vulnerability
android
ios
windows phone
tizen
nessus

8.1 High

AI Score

Confidence

Low

JSON

A buffer overflow vulnerability in WhatsApp VOIP stack allowed remote code execution via specially crafted series of RTCP packets sent to a target phone number. The issue affects WhatsApp for Android prior to v2.19.134, WhatsApp Business for Android prior to v2.19.44, WhatsApp for iOS prior to v2.19.51, WhatsApp Business for iOS prior to v2.19.51, WhatsApp for Windows Phone prior to v2.18.348, and WhatsApp for Tizen prior to v2.18.15.

Note that Nessus has not tested for this issue but has instead relied only on the application’s self-reported version number.

Binary data android_cve-2019-18426.nbin
VendorProductVersionCPE
samsunginternetcpe:/a:samsung:internet

Related

thn 6
packetstorm 1
prion 2
cve 2
zdt 1
cisa_kev 2
checkpoint_advisories 1
attackerkb 2
githubexploit 1
exploitdb 1
threatpost 5
malwarebytes 1
securelist 2
cisa 1
fireeye 1
googleprojectzero 1
thn
thn
This WhatsApp Bug Could Have Let Attackers Access Files On Your PCs
2020-02-04 20:22:00
U.S. Court Orders NSO Group to Hand Over Pegasus Spyware Code to WhatsApp
2024-03-02 06:23:00
Experts Uncover Spyware Attacks Against Catalan Politicians and Activists
2022-04-19 10:26:00
packetstorm
packetstorm
WhatsApp Desktop 0.3.9308 Cross Site Scripting
2020-04-06 00:00:00
prion
prion
Cross site scripting
2020-01-21 21:15:00
Buffer overflow
2019-05-14 20:29:00
cve
cve
CVE-2019-18426
2020-01-21 21:15:00
CVE-2019-3568
2019-05-14 20:29:00
zdt
zdt
WhatsApp Desktop 0.3.9308 - Persistent Cross-Site Scripting Exploit
2020-04-06 00:00:00
cisa_kev
cisa_kev
WhatsApp Cross-Site Scripting Vulnerability
2022-05-23 00:00:00
WhatsApp VOIP Stack Buffer Overflow Vulnerability
2022-04-19 00:00:00
checkpoint_advisories
checkpoint_advisories
WhatsApp Desktop Cross Site Scripting (CVE-2019-18426)
2022-06-13 00:00:00
attackerkb
attackerkb
CVE-2019-18426
2019-06-05 00:00:00
CVE-2019-3568
2019-05-14 00:00:00
githubexploit
githubexploit
Exploit for CVE-2019-18426
2020-02-29 21:36:46
exploitdb
exploitdb
WhatsApp Desktop 0.3.9308 - Persistent Cross-Site Scripting
2020-04-06 00:00:00
threatpost
threatpost
WhatsApp Bug Allows Malicious Code-Injection, One-Click RCE
2020-02-05 16:50:37
BRATA Android RAT Steals Banking Info in Real Time
2019-09-04 15:01:58
WhatsApp Zero-Day Exploited in Targeted Spyware Attacks
2019-05-14 12:58:25
malwarebytes
malwarebytes
WhatsApp fix goes live after targeted attack on human rights lawyer
2019-05-14 16:46:21
securelist
securelist
Fully equipped Spying Android RAT from Brazil: BRATA
2019-08-29 14:00:26
APT trends report Q2 2019
2019-08-01 10:00:05
cisa
cisa
Facebook Releases Security Advisory for WhatsApp
2019-05-14 00:00:00
fireeye
fireeye
Zero-Day Exploitation Increasingly Demonstrates Access to Money, Rather than Skill β€” Intelligence for Vulnerability Management, Part One
2020-04-06 00:00:00
googleprojectzero
googleprojectzero
TFW you-get-really-excited-you-patch-diffed-a-0day-used-in-the-wild-but-then-find-out-it-is-the-wrong-vuln
2020-04-02 00:00:00

8.1 High

AI Score

Confidence

Low

JSON
Related for ANDROID_CVE-2019-18426.NBIN
thn6packetstorm1prion2cve2zdt1cisa_kev2checkpoint_advisories1attackerkb2githubexploit1exploitdb1threatpost5malwarebytes1securelist2cisa1fireeye1googleprojectzero1