CVE-2018-6350
CVE-2018-6350
Vexday Risk Score
3Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS —EPSS 1.7%KEV nãoPoC —Patch —
Ciclo de vida
14 jun 2019Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
An out-of-bounds read was possible in WhatsApp due to incorrect parsing of RTP extension headers. This issue affects WhatsApp for Android prior to 2.18.276, WhatsApp Business for Android prior to 2.18.99, WhatsApp for iOS prior to 2.18.100.6, WhatsApp Business for iOS prior to 2.18.100.2, and WhatsApp for Windows Phone prior to 2.18.224.
Productos afectados
Facebook · WhatsApp Business for AndroidFacebook · WhatsApp Business for iOSFacebook · WhatsApp for AndroidFacebook · WhatsApp for iOSFacebook · WhatsApp for Windows Phone¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →