Search

Find a vulnerability

Search criteria

    2 vulnerabilities found for whatsapp_enterprise_client by whatsapp

    CVE-2019-11931 (GCVE-0-2019-11931)

    Vulnerability from nvd – Published: 2019-11-14 22:55 – Updated: 2024-08-04 23:10
    VLAI
    Summary
    A stack-based buffer overflow could be triggered in WhatsApp by sending a specially crafted MP4 file to a WhatsApp user. The issue was present in parsing the elementary stream metadata of an MP4 file and could result in a DoS or RCE. This affects Android versions prior to 2.19.274, iOS versions prior to 2.19.100, Enterprise Client versions prior to 2.25.3, Business for Android versions prior to 2.19.104 and Business for iOS versions prior to 2.19.100.
    Severity
    No CVSS data available.
    CWE
    • CWE-121 - Stack-based Buffer Overflow (CWE-121)
    Assigner
    References
    Impacted products
    Vendor Product Version
    Facebook WhatsApp for Android Affected: 2.19.274
    Affected: unspecified , < 2.19.274 (custom)
    Create a notification for this product.
    Facebook WhatsApp for iOS Affected: 2.19.100
    Affected: unspecified , < 2.19.100 (custom)
    Create a notification for this product.
    Facebook WhatsApp for Windows Phone Affected: unspecified , ≤ 2.18.368 (custom)
    Create a notification for this product.
    Facebook WhatsApp Enterprise Client Affected: 2.25.3
    Affected: unspecified , < 2.25.3 (custom)
    Create a notification for this product.
    Facebook WhatsApp Business for Android Affected: 2.19.104
    Affected: unspecified , < 2.19.104 (custom)
    Create a notification for this product.
    Facebook WhatsApp Business for iOS Affected: 2.19.100
    Affected: unspecified , < 2.19.100 (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T23:10:29.691Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://www.facebook.com/security/advisories/cve-2019-11931"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "WhatsApp for Android",
              "vendor": "Facebook",
              "versions": [
                {
                  "status": "affected",
                  "version": "2.19.274"
                },
                {
                  "lessThan": "2.19.274",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "WhatsApp for iOS",
              "vendor": "Facebook",
              "versions": [
                {
                  "status": "affected",
                  "version": "2.19.100"
                },
                {
                  "lessThan": "2.19.100",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "WhatsApp for Windows Phone",
              "vendor": "Facebook",
              "versions": [
                {
                  "lessThanOrEqual": "2.18.368",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "WhatsApp Enterprise Client",
              "vendor": "Facebook",
              "versions": [
                {
                  "status": "affected",
                  "version": "2.25.3"
                },
                {
                  "lessThan": "2.25.3",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "WhatsApp Business for Android",
              "vendor": "Facebook",
              "versions": [
                {
                  "status": "affected",
                  "version": "2.19.104"
                },
                {
                  "lessThan": "2.19.104",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "WhatsApp Business for iOS",
              "vendor": "Facebook",
              "versions": [
                {
                  "status": "affected",
                  "version": "2.19.100"
                },
                {
                  "lessThan": "2.19.100",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "dateAssigned": "2019-11-14T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "A stack-based buffer overflow could be triggered in WhatsApp by sending a specially crafted MP4 file to a WhatsApp user. The issue was present in parsing the elementary stream metadata of an MP4 file and could result in a DoS or RCE. This affects Android versions prior to 2.19.274, iOS versions prior to 2.19.100, Enterprise Client versions prior to 2.25.3, Business for Android versions prior to 2.19.104 and Business for iOS versions prior to 2.19.100."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-121",
                  "description": "Stack-based Buffer Overflow (CWE-121)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2019-11-14T22:55:52.000Z",
            "orgId": "4fc57720-52fe-4431-a0fb-3d2c8747b827",
            "shortName": "facebook"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://www.facebook.com/security/advisories/cve-2019-11931"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve-assign@fb.com",
              "DATE_ASSIGNED": "2019-11-14",
              "ID": "CVE-2019-11931",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "WhatsApp for Android",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "!=\u003e",
                                "version_value": "2.19.274"
                              },
                              {
                                "version_affected": "\u003c",
                                "version_value": "2.19.274"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "WhatsApp for iOS",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "!=\u003e",
                                "version_value": "2.19.100"
                              },
                              {
                                "version_affected": "\u003c",
                                "version_value": "2.19.100"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "WhatsApp for Windows Phone",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c=",
                                "version_value": "2.18.368"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "WhatsApp Enterprise Client",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "!=\u003e",
                                "version_value": "2.25.3"
                              },
                              {
                                "version_affected": "\u003c",
                                "version_value": "2.25.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "WhatsApp Business for Android",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "!=\u003e",
                                "version_value": "2.19.104"
                              },
                              {
                                "version_affected": "\u003c",
                                "version_value": "2.19.104"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "WhatsApp Business for iOS",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "!=\u003e",
                                "version_value": "2.19.100"
                              },
                              {
                                "version_affected": "\u003c",
                                "version_value": "2.19.100"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Facebook"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "A stack-based buffer overflow could be triggered in WhatsApp by sending a specially crafted MP4 file to a WhatsApp user. The issue was present in parsing the elementary stream metadata of an MP4 file and could result in a DoS or RCE. This affects Android versions prior to 2.19.274, iOS versions prior to 2.19.100, Enterprise Client versions prior to 2.25.3, Business for Android versions prior to 2.19.104 and Business for iOS versions prior to 2.19.100."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Stack-based Buffer Overflow (CWE-121)"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://www.facebook.com/security/advisories/cve-2019-11931",
                  "refsource": "CONFIRM",
                  "url": "https://www.facebook.com/security/advisories/cve-2019-11931"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "4fc57720-52fe-4431-a0fb-3d2c8747b827",
        "assignerShortName": "facebook",
        "cveId": "CVE-2019-11931",
        "datePublished": "2019-11-14T22:55:52.000Z",
        "dateReserved": "2019-05-13T00:00:00.000Z",
        "dateUpdated": "2024-08-04T23:10:29.691Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2019-11931 (GCVE-0-2019-11931)

    Vulnerability from cvelistv5 – Published: 2019-11-14 22:55 – Updated: 2024-08-04 23:10
    VLAI
    Summary
    A stack-based buffer overflow could be triggered in WhatsApp by sending a specially crafted MP4 file to a WhatsApp user. The issue was present in parsing the elementary stream metadata of an MP4 file and could result in a DoS or RCE. This affects Android versions prior to 2.19.274, iOS versions prior to 2.19.100, Enterprise Client versions prior to 2.25.3, Business for Android versions prior to 2.19.104 and Business for iOS versions prior to 2.19.100.
    Severity
    No CVSS data available.
    CWE
    • CWE-121 - Stack-based Buffer Overflow (CWE-121)
    Assigner
    References
    Impacted products
    Vendor Product Version
    Facebook WhatsApp for Android Affected: 2.19.274
    Affected: unspecified , < 2.19.274 (custom)
    Create a notification for this product.
    Facebook WhatsApp for iOS Affected: 2.19.100
    Affected: unspecified , < 2.19.100 (custom)
    Create a notification for this product.
    Facebook WhatsApp for Windows Phone Affected: unspecified , ≤ 2.18.368 (custom)
    Create a notification for this product.
    Facebook WhatsApp Enterprise Client Affected: 2.25.3
    Affected: unspecified , < 2.25.3 (custom)
    Create a notification for this product.
    Facebook WhatsApp Business for Android Affected: 2.19.104
    Affected: unspecified , < 2.19.104 (custom)
    Create a notification for this product.
    Facebook WhatsApp Business for iOS Affected: 2.19.100
    Affected: unspecified , < 2.19.100 (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T23:10:29.691Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://www.facebook.com/security/advisories/cve-2019-11931"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "WhatsApp for Android",
              "vendor": "Facebook",
              "versions": [
                {
                  "status": "affected",
                  "version": "2.19.274"
                },
                {
                  "lessThan": "2.19.274",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "WhatsApp for iOS",
              "vendor": "Facebook",
              "versions": [
                {
                  "status": "affected",
                  "version": "2.19.100"
                },
                {
                  "lessThan": "2.19.100",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "WhatsApp for Windows Phone",
              "vendor": "Facebook",
              "versions": [
                {
                  "lessThanOrEqual": "2.18.368",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "WhatsApp Enterprise Client",
              "vendor": "Facebook",
              "versions": [
                {
                  "status": "affected",
                  "version": "2.25.3"
                },
                {
                  "lessThan": "2.25.3",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "WhatsApp Business for Android",
              "vendor": "Facebook",
              "versions": [
                {
                  "status": "affected",
                  "version": "2.19.104"
                },
                {
                  "lessThan": "2.19.104",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "WhatsApp Business for iOS",
              "vendor": "Facebook",
              "versions": [
                {
                  "status": "affected",
                  "version": "2.19.100"
                },
                {
                  "lessThan": "2.19.100",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "dateAssigned": "2019-11-14T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "A stack-based buffer overflow could be triggered in WhatsApp by sending a specially crafted MP4 file to a WhatsApp user. The issue was present in parsing the elementary stream metadata of an MP4 file and could result in a DoS or RCE. This affects Android versions prior to 2.19.274, iOS versions prior to 2.19.100, Enterprise Client versions prior to 2.25.3, Business for Android versions prior to 2.19.104 and Business for iOS versions prior to 2.19.100."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-121",
                  "description": "Stack-based Buffer Overflow (CWE-121)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2019-11-14T22:55:52.000Z",
            "orgId": "4fc57720-52fe-4431-a0fb-3d2c8747b827",
            "shortName": "facebook"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://www.facebook.com/security/advisories/cve-2019-11931"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve-assign@fb.com",
              "DATE_ASSIGNED": "2019-11-14",
              "ID": "CVE-2019-11931",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "WhatsApp for Android",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "!=\u003e",
                                "version_value": "2.19.274"
                              },
                              {
                                "version_affected": "\u003c",
                                "version_value": "2.19.274"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "WhatsApp for iOS",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "!=\u003e",
                                "version_value": "2.19.100"
                              },
                              {
                                "version_affected": "\u003c",
                                "version_value": "2.19.100"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "WhatsApp for Windows Phone",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c=",
                                "version_value": "2.18.368"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "WhatsApp Enterprise Client",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "!=\u003e",
                                "version_value": "2.25.3"
                              },
                              {
                                "version_affected": "\u003c",
                                "version_value": "2.25.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "WhatsApp Business for Android",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "!=\u003e",
                                "version_value": "2.19.104"
                              },
                              {
                                "version_affected": "\u003c",
                                "version_value": "2.19.104"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "WhatsApp Business for iOS",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "!=\u003e",
                                "version_value": "2.19.100"
                              },
                              {
                                "version_affected": "\u003c",
                                "version_value": "2.19.100"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Facebook"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "A stack-based buffer overflow could be triggered in WhatsApp by sending a specially crafted MP4 file to a WhatsApp user. The issue was present in parsing the elementary stream metadata of an MP4 file and could result in a DoS or RCE. This affects Android versions prior to 2.19.274, iOS versions prior to 2.19.100, Enterprise Client versions prior to 2.25.3, Business for Android versions prior to 2.19.104 and Business for iOS versions prior to 2.19.100."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Stack-based Buffer Overflow (CWE-121)"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://www.facebook.com/security/advisories/cve-2019-11931",
                  "refsource": "CONFIRM",
                  "url": "https://www.facebook.com/security/advisories/cve-2019-11931"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "4fc57720-52fe-4431-a0fb-3d2c8747b827",
        "assignerShortName": "facebook",
        "cveId": "CVE-2019-11931",
        "datePublished": "2019-11-14T22:55:52.000Z",
        "dateReserved": "2019-05-13T00:00:00.000Z",
        "dateUpdated": "2024-08-04T23:10:29.691Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }