← volver
CVE-2018-6339

CVE-2018-6339

EPSS 1.5%CWE-121
Vexday Risk Score
3Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS EPSS 1.5%KEV nãoPoC Patch
Ciclo de vida
14 jun 2019Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
When receiving calls using WhatsApp on Android, a stack allocation failed to properly account for the amount of data being passed in. An off-by-one error meant that data was written beyond the allocated space on the stack. This issue affects WhatsApp for Android starting in version 2.18.180 and was fixed in version 2.18.295. It also affects WhatsApp Business for Android starting in version v2.18.103 and was fixed in version v2.18.150.
Productos afectados
Facebook · WhatsApp Business for AndroidFacebook · WhatsApp for Android

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://www.facebook.com/security/advisories/cve-2018-6339/