WhatsApp identifies two risks through video calls and sent videos, so the app should be updated

Two vulnerabilities in WhatsApp. (photo: MuySeguridad)

WhatsApp has published on its official blog information about two vulnerabilities main found in outdated versions of the application.

This means that the company responsible for the Messenger Service I was already aware of the issues and fixed them, but if the user is not using the latest version of the platform, you should update it as soon as possible.

What are these WhatsApp vulnerabilities

The first vulnerability, tracked as CVE-2022-36934 with a severity rating of 9.8/10 (critical), consists of a integer Overflow, a common mistake that basically consists of trying to add a value to an integer variable.

What does this mean? In the messaging service application owned by Goalthat there is an integer overflow means that the attacker will send a call, which opens the door to remote attacks that could lead to the installation of malware in the operating system of a user.

And to note, a malware is capable of performing many actions on an infected computer, such as:

– Record keystrokes or keylogging to search for credentials and other sensitive data;

– Intercept communications in any social media app

– Record calls

– Take photos

– Steal user credentials.

Malware Octo steals passwords from banking apps on <a class=Android. (photo: Five Days)” height=”370″ src=”https://www.americanchronicles.news/wp-content/uploads/2022/04/1649886248_127_Android-they-detect-a-dangerous-malware-that-steals-keys-from.png” width=”656″ />
Malware Octo steals passwords from banking apps on Android. (photo: Five Days)

The second vulnerability, tracked as CVE-2022-27492 and rated 7.8/10 (High), allows attackers to execute remote code after send a malicious video file.

Unfortunately, media files have been one of the most widely used tools for spreading malware for years, and the reality is that unless staff are fooled, malicious actors are not successful in many cases.

However, the great freedoms that the system of Google can make someone use a custom ROM and thus getting the installer from APK manually. So in this case, WhatsApp also recommends uninstalling and reinstalling the app if the APK file doesn’t work directly with the update.

What versions of WhatsApp are in danger and how to update it

Both vulnerabilities were recently patched, so Infobae recommends completing the update process as soon as possible.

In the case of vulnerability to video call (CVE-2022-36934), the vulnerable WhatsApp versions are:

– For iOS earlier than version v2.22.16.12

– Business for iOS older than v2.22.16.12

– For Android older than version v2.22.16.12

– Business for Android older than v2.22.16.12

In the case of vulnerability before sending a malicious video (CVE-2022-27492), the vulnerable WhatsApp versions are:

– WhatsApp for Android older than v2.22.16.2

– WhatsApp for iOS v2.22.15.9

Cell phone with the WhatsApp logo.  (photo: iProfessional)
Cell phone with the WhatsApp logo. (photo: iProfessional)

both in Android and iOSfor to update the messaging application you have to go to the application store (Google Play Store Y app storerespectively) and continue with the current or latest available update.

KEEP READING

WhatsApp has an update to use the application simultaneously with the tablet

WhatsApp could notify users when their phone number is shared with companies

WhatsApp update will not allow another user to save temporary messages

Source-www.infobae.com