CVE-2022-27492

Summary

An integer underflow in WhatsApp could have caused remote code execution when receiving a crafted video file.

Affected Software

VendorProductVersion RangeStatus
MetaWhatsApp Business for iOSunspecified < v2.22.15.9affected
MetaWhatsApp for iOSunspecified < v2.22.15.9affected
MetaWhatsApp for Androidunspecified < 2.22.16.2affected
MetaWhatsApp Business for Androidunspecified < 2.22.16.2affected

Weaknesses

  • CWE-191: CWE-191

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References