CNNVD-202508-3473 Information

Aug 29, 2025 cve

CNNVD ID

CNNVD-202508-3473

CVE-2025-55177

  • CNNVD Published: 2025-08-29

Description (Chinese)

Facebook WhatsApp是美国Facebook公司的一套基于Android平台的、利用网络传送短信的移动应用程序。该应用程序通过智能手机中的联络人信息,查找使用该软件的联络人传送文字、图片等。 Facebook WhatsApp存在安全漏洞,该漏洞源于链接设备同步消息授权不足,可能导致任意URL处理。以下版本受到影响:WhatsApp for iOS 2.25.21.73之前版本、WhatsApp Business for iOS 2.25.21.78版本和WhatsApp for Mac 2.25.21.78版本。

Description (English)

Facebook WhatsApp is a mobile application based on the Android platform that uses Internet to send text messages. The application uses contact information on smartphones to locate contacts using the software to transmit text, pictures, etc. Facebook WhatsApp has a security loophole, which stems from the lack of a link device synchronized message authorization, which may lead to any URL processing. The following versions were affected: former version of WhatsApp for iOS 2.25.21.73, version of WhatsApp Business for iOS 2.25.21.78 and version of WhatsApp for Mac 2.25.21.78.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Facebook

Published

2025-08-29

Last Modified

2026-02-24

References

https://www.whatsapp.com/security/advisories/2025/ https://www.facebook.com/security/advisories/cve-2025-55177 https://access.redhat.com/security/cve/cve-2025-55177 https://nvd.nist.gov/vuln/detail/CVE-2025-55177

Patch

https://www.facebook.com/security/advisories/cve-2025-55177

Share on: