CVE-2018-6350 Information
Feb 14, 2021
cve
Description
An out-of-bounds read was possible in WhatsApp due to incorrect parsing of RTP extension headers. This issue affects WhatsApp for Android prior to 2.18.276 WhatsApp Business for Android prior to 2.18.99 WhatsApp for iOS prior to 2.18.100.6 WhatsApp Business for iOS prior to 2.18.100.2 and WhatsApp for Windows Phone prior to 2.18.224.
CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Reference
http://www.securityfocus.com/bid/108803 https://www.facebook.com/security/advisories/cve-2018-6350/
Attack Complexity
LOW
Privileges Required
NONE
User Interaction Required
NONE
Scope
NONE
Confidentiality Impact
UNCHANGED
Integrity Impact
HIGH
Availability Impact
HIGH
Base Score
HIGH
Base Severity
9.8
Share on: