Where data is home
Where Data is Home

New Whatsapp Zero-Day Vulnerabilities Enable Remote App Control

Emerging Threats
By Editor
Securing IoT Devices
0 30

Two new zero-day vulnerabilities have been discovered in WhatsApp, a popular messaging app. The vulnerabilities, named CVE-2022-36934 and CVE-2022-27492, affect both the Android and iOS versions of WhatsApp. CVE-2022-36934 is an integer overflow bug that allows remote code execution during video calls. This vulnerability has been fixed in the latest version of WhatsApp. On the other hand, CVE-2022-27492 is an integer underflow bug that requires user interaction for remote code execution. It is related to a code block issue in the Video File Handler. This vulnerability has also been fixed in recent versions of WhatsApp. The impact of CVE-2022-36934 is the ability for attackers to execute arbitrary code during a video call, while CVE-2022-27492 requires users to interact with a specific video file. To prevent exploitation, it is important for WhatsApp users to update their app to the latest version and remain vigilant about installing security patches.

Key Takeaways

  • Two new zero-day vulnerabilities, CVE-2022-36934 and CVE-2022-27492, have been discovered in WhatsApp, allowing hackers to control the app remotely.
  • These vulnerabilities have a critical severity rating of 10/10 and were found by the internal security team of WhatsApp.
  • The exploitation potential of these bugs includes launching malware, stealing sensitive data, monitoring user activities, and hacking the entire device.
  • The vulnerabilities have been fixed in the latest versions of WhatsApp (v2.22.16.12 for Android and iOS for CVE-2022-36934, and v2.22.16.2 for Android and v2.22.15.9 for iOS for CVE-2022-27492), and users are advised to update to these versions to avoid being affected.

New Zero-Day Bugs

The pre-existing knowledge reveals the presence of new zero-day vulnerabilities in WhatsApp, including CVE-2022-36934, an integer overflow bug, and CVE-2022-27492, an integer underflow bug, both of which have been marked as critical with a score of 10/10 by the internal security team. These vulnerabilities have the potential to allow hackers to remotely control the WhatsApp application. The exploitation potential of these bugs is significant, as attackers can launch malware, steal sensitive data, monitor user activities, and even hack the entire device. The vulnerabilities were fixed in the latest versions of WhatsApp (v2.22.16.12 for Android and iOS for CVE-2022-36934, and v2.22.16.2 for Android and v2.22.15.9 for iOS for CVE-2022-27492). The underground market value of these zero-day bugs is estimated to be between $5k to $25k, although there is no evidence of exploitation at this time. Users are strongly advised to update their WhatsApp to the latest version and take preventive measures to avoid being affected by these remote code execution bugs.

Exploitation Potential

Exploitation potential of the recently discovered vulnerabilities in WhatsApp includes launching malware, stealing sensitive data, monitoring user activities, and hacking the entire device. These vulnerabilities, marked as critical with a score of 10/10, pose serious threats to user privacy and security. A successful exploitation of these vulnerabilities can have severe consequences, compromising user privacy and exposing sensitive information. The impact on user privacy can be significant as attackers can remotely execute arbitrary code during video calls, allowing them to gain control over the app and potentially the entire device. This could lead to unauthorized access to personal data, unauthorized monitoring of user activities, and the potential for further exploitation. It is crucial for users to update their WhatsApp to the latest version to avoid being affected by these remote code execution bugs and to ensure their privacy and security.

CVE-2022-36934 and CVE-2022-27492 Details

CVE-2022-36934 and CVE-2022-27492 are two critical security flaws discovered in WhatsApp that involve integer overflow and underflow respectively, allowing for potential remote code execution and compromising user privacy and device security. The impact of these bugs on WhatsApp’s security is significant. The integer overflow bug, CVE-2022-36934, enables an attacker to execute arbitrary code during a video call, exploiting the increase in the number of integers. On the other hand, the integer underflow bug, CVE-2022-27492, requires user interaction for remote code execution through a crafted video file. The fixed versions, v2.22.16.12 for Android and iOS (CVE-2022-36934), and v2.22.16.2 (Android) and v2.22.15.9 (iOS) for CVE-2022-27492, aim to address these vulnerabilities. However, it remains to be seen how effective these fixes are in completely mitigating the risks and ensuring the security of WhatsApp users‘ data and devices.

Frequently Asked Questions

How were the new zero-day vulnerabilities in WhatsApp discovered?

The new zero-day vulnerabilities in WhatsApp were discovered by the internal security team. These critical vulnerabilities, marked as 10/10, have the potential to launch malware, steal sensitive data, monitor user activities, and hack the entire device. To mitigate the impact of these vulnerabilities, users are advised to update their WhatsApp to the latest version and take necessary security measures.

What are the potential risks associated with these zero-day vulnerabilities?

The potential risks associated with these zero-day vulnerabilities in WhatsApp include the ability for attackers to launch malware, steal sensitive data, monitor user activities, and hack the entire device. Mitigation strategies include updating WhatsApp to the latest version and avoiding being affected by remote code execution bugs.

How can the CVE-2022-36934 vulnerability be exploited?

The CVE-2022-36934 vulnerability in WhatsApp can be exploited through remote code execution during a video call. To mitigate the risks, users should update their WhatsApp to the latest version and avoid being affected by the RCE bugs.

What is the impact of the CVE-2022-27492 vulnerability?

The impact of the CVE-2022-27492 vulnerability is that it requires user interaction for remote code execution through a crafted video file. This vulnerability is related to an issue with the Video File Handler’s code block.

What are the recommended prevention measures to protect against these vulnerabilities?

To protect against the WhatsApp zero-day vulnerabilities (CVE-2022-36934 and CVE-2022-27492), it is recommended to implement prevention measures such as updating WhatsApp to the latest version and avoiding potential exploitation by ensuring the installation of security patches. These security measures help mitigate the risk of remote code execution and unauthorized access.

Continue Reading
Editor 1200 posts 0 comments
Das könnte dir auch gefallen Mehr vom Autor
Hinterlasse eine Antwort

This website uses cookies to improve your experience. We'll assume you're ok with this, but you can opt-out if you wish. Accept Read More