Older App Versions That Allow Attacker to Exploit Phones via Video Call are critical vulnerabilities, according to WhatsAppReveals

Older App Versions That Allow Attacker to Exploit Phones via Video Call are critical vulnerabilities ...

WhatsApp, Meta''s instant messaging and calling service, has published details of a''critical'' vulnerability that has been patched in a newer version of the app, but might also impact older installed versions that have not been updated.

The information about the vulnerability was revealed in a September update on WhatsApp''s security advisories that impacted the app, which took place on September 23.

According to the details, the bug would allow an attacker to exploit overflow, after which they may gain access to their own code on a victim''s smartphone through a specially crafted video call.

On the CVE scale, this vulnerability has been given a severity score of 9.8 out of ten.

According to WhatsApp, a hidden underflow in WhatsApp for Android prior to v2.22.16.2 and WhatsApp for iOS v2.22.15.9 might have resulted in remote code execution when receiving a personalized video file, according to the same security advisory update.

The vulnerability was rated 7.8 out of 10.

Mahatme''s departure comes at a crucial time forWhatsApp, which is attempting to expand its payment service in a highly competitive market and lock horns with more established players, like Alphabet''sGoogle Pay, Ant Group-backed Paytm, and Walmart''sPhonePe.

During his stint atWhatsApp Pay, the company received regulatory approval to more than double its payments, offering to 100 million users in India, the largest market with more than half a billion users globally.