Lucene search
K

27 matches found

OSV
OSV
added 2026/05/21 12:59 p.m.8 views

MAL-2026-4618 Malicious code in n8n-nodes-whatsapp-business-api-by-automations-builder (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a012be4fda5d6832fa3f4b404fd0026c0b351642260408e7f4fbb955e48b38a8 Package presents itself as an n8n node for the WhatsApp Business API Meta Graph. Instead of calling graph.facebook.com, every request — credential...

5.8AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/05/21 12:59 p.m.10 views

Malicious code in n8n-nodes-whatsapp-business-api-by-automations-builder (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a012be4fda5d6832fa3f4b404fd0026c0b351642260408e7f4fbb955e48b38a8 Package presents itself as an n8n node for the WhatsApp Business API Meta Graph. Instead of calling graph.facebook.com, every request — credential...

5.8AI score
Exploits0References1
EUVD
EUVD
added 2025/11/18 3:30 p.m.7 views

EUVD-2025-197992

Incomplete validation of rich response messages in WhatsApp for iOS prior to v2.25.23.73, WhatsApp Business for iOS v2.25.23.82, and WhatsApp for Mac v2.25.23.83 could have allowed a user to trigger processing of media content from an arbitrary URL on another user’s device. We have not seen...

5.4CVSS6.2AI score0.00152EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/11/18 1:56 p.m.5 views

CVE-2025-55179

Incomplete validation of rich response messages in WhatsApp for iOS prior to v2.25.23.73, WhatsApp Business for iOS v2.25.23.82, and WhatsApp for Mac v2.25.23.83 could have allowed a user to trigger processing of media content from an arbitrary URL on another user’s device. We have not seen...

5.4CVSS6.4AI score0.00152EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.20 views

EUVD-2020-12717

Malware in sbrugna...

9.8CVSS9.2AI score0.01488EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-13206

Malware in sbrugna...

9.8CVSS9.2AI score0.02196EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-12720

Malware in sbrugna...

8.8CVSS8.6AI score0.01752EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/08/31 4:27 p.m.3 views

CVE-2025-55177

Incomplete authorization of linked device synchronization messages in WhatsApp for iOS prior to v2.25.21.73, WhatsApp Business for iOS v2.25.21.78, and WhatsApp for Mac v2.25.21.78 could have allowed an unrelated user to trigger processing of content from an arbitrary URL on a target’s device. We...

8.8CVSS6.6AI score0.19972EPSS
Exploits9References1
Vulnrichment
Vulnrichment
added 2025/08/29 3:50 p.m.4 views

CVE-2025-55177

Incomplete authorization of linked device synchronization messages in WhatsApp for iOS prior to v2.25.21.73, WhatsApp Business for iOS v2.25.21.78, and WhatsApp for Mac v2.25.21.78 could have allowed an unrelated user to trigger processing of content from an arbitrary URL on a target’s device. We...

5.4CVSS6AI score0.04116EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/05/22 7:20 p.m.9 views

CVE-2021-24043

A missing bound check in RTCP flag parsing code prior to WhatsApp for Android v2.21.23.2, WhatsApp Business for Android v2.21.23.2, WhatsApp for iOS v2.21.230.6, WhatsApp Business for iOS 2.21.230.7, and WhatsApp Desktop v2.2145.0 could have allowed an out-of-bounds heap read if a user sent a...

9.1CVSS6.8AI score0.01119EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:27 p.m.9 views

CVE-2020-1894

A stack write overflow in WhatsApp for Android prior to v2.20.35, WhatsApp Business for Android prior to v2.20.20, WhatsApp for iPhone prior to v2.20.30, and WhatsApp Business for iPhone prior to v2.20.30 could have allowed arbitrary code execution when playing a specially crafted push to talk...

8.8CVSS8AI score0.01752EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 3:17 p.m.12 views

CVE-2020-1907

A stack overflow in WhatsApp for Android prior to v2.20.196.16, WhatsApp Business for Android prior to v2.20.196.12, WhatsApp for iOS prior to v2.20.90, WhatsApp Business for iOS prior to v2.20.90, and WhatsApp for Portal prior to v173.0.0.29.505 could have allowed arbitrary code execution when...

9.8CVSS7.9AI score0.01889EPSS
Exploits0
OSV
OSV
added 2022/01/04 7:15 p.m.4 views

CVE-2021-24042

The calling logic for WhatsApp for Android prior to v2.21.23, WhatsApp Business for Android prior to v2.21.23, WhatsApp for iOS prior to v2.21.230, WhatsApp Business for iOS prior to v2.21.230, WhatsApp for KaiOS prior to v2.2143, WhatsApp Desktop prior to v2.2146 could have allowed an...

9.8CVSS5.8AI score0.01242EPSS
Exploits0References1
Prion
Prion
added 2022/01/04 7:15 p.m.29 views

Out-of-bounds

The calling logic for WhatsApp for Android prior to v2.21.23, WhatsApp Business for Android prior to v2.21.23, WhatsApp for iOS prior to v2.21.230, WhatsApp Business for iOS prior to v2.21.230, WhatsApp for KaiOS prior to v2.2143, WhatsApp Desktop prior to v2.2146 could have allowed an...

7.5CVSS8.7AI score0.01242EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2021/06/11 4:15 a.m.4 views

CVE-2021-24035

A lack of filename validation when unzipping archives prior to WhatsApp for Android v2.21.8.13 and WhatsApp Business for Android v2.21.8.13 could have allowed path traversal attacks that overwrite WhatsApp files...

9.1CVSS7.3AI score0.01134EPSS
Exploits0References1
Prion
Prion
added 2021/06/11 4:15 a.m.16 views

Path traversal

A lack of filename validation when unzipping archives prior to WhatsApp for Android v2.21.8.13 and WhatsApp Business for Android v2.21.8.13 could have allowed path traversal attacks that overwrite WhatsApp files...

6.4CVSS8.8AI score0.01134EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2021/06/11 12:0 a.m.5 views

Facebook WhatsApp for Android 路径遍历漏洞

Facebook WhatsApp is a mobile application from Facebook, Inc. that uses the Internet to send text messages. A security vulnerability exists in WhatsApp for Android and WhatsApp Business for Android, which stems from a lack of file name validation when unpacking files, and could be exploited to...

9.1CVSS5.6AI score0.01134EPSS
Exploits0References2
NCSC
NCSC
added 2021/04/07 12:0 a.m.8 views

Vulnerabilities fixed in WhatsApp

Vulnerabilities have been fixed in WhatsApp. A malicious party could potentially exploit the vulnerabilities to obtain sensitive information or to cause a denial-of-service. The vulnerability with CVE attribute CVE-2021-24027 only applies to applicable to WhatsApp for Android and WhatsApp Busines...

10CVSS6.9AI score0.03805EPSS
Exploits1
OSV
OSV
added 2021/02/02 8:15 p.m.5 views

CVE-2020-1910

A missing bounds check in WhatsApp for Android prior to v2.21.1.13 and WhatsApp Business for Android prior to v2.21.1.13 could have allowed out-of-bounds read and write if a user applied specific image filters to a specially crafted image and sent the resulting image...

7.8CVSS5.8AI score0.05118EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/02/02 12:0 a.m.8 views

Facebook WhatsApp for Android and WhatsApp Business for Android Buffer Error Vulnerability

Facebook WhatsApp is a suite of mobile applications from Facebook Inc. in the United States that use the Internet to send text messages. The application uses the contact information in a smartphone to find contacts using the software to send texts, pictures, etc. WhatsApp Business is the commerci...

7.8CVSS7.3AI score0.05118EPSS
Exploits0References2
Rows per page
Query Builder