CNNVD-202511-2065 Information

Nov 18, 2025 cve

CNNVD ID

CNNVD-202511-2065

CVE-2025-55179

  • CNNVD Published: 2025-11-18

Description (Chinese)

Facebook WhatsApp是美国Facebook公司的一套基于Android平台的、利用网络传送短信的移动应用程序。该应用程序通过智能手机中的联络人信息,查找使用该软件的联络人传送文字、图片等。 Facebook WhatsApp存在安全漏洞,该漏洞源于富响应消息验证不完整,可能导致触发处理来自任意URL的媒体内容。以下版本受到影响:WhatsApp for iOS 2.25.23.73之前版本、WhatsApp Business for iOS 2.25.23.82版本和WhatsApp for Mac 2.25.23.83版本。

Description (English)

Facebook WhatsApp is a mobile application based on the Android platform that uses Internet to send text messages. The application uses contact information on smartphones to locate contacts using the software to transmit text, pictures, etc. Facebook WhatsApp has a security loophole, which stems from the incomplete validation of responsive information, which may trigger the handling of media content from any URL. The following versions have been affected: WhatsApp for iOS 2.25.23.73, WhatsApp Business for iOS 2.25.23.82 and WhatsApp for Mac 2.25.23.83.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Facebook

Published

2025-11-18

Last Modified

2026-02-24

References

https://www.facebook.com/security/advisories/cve-2025-55179 https://www.whatsapp.com/security/advisories/2025/ https://access.redhat.com/security/cve/cve-2025-55179

Patch

https://www.facebook.com/security/advisories/cve-2025-55179

Share on: