When receiving calls using WhatsApp on Android, a stack allocation failed to properly account for the amount of data being passed in. An off-by-one error meant that data was written beyond the allocated space on the stack. This issue affects WhatsApp for Android starting in version 2.18.180 and was fixed in version 2.18.295. It also affects WhatsApp Business for Android starting in version v2.18.103 and was fixed in version v2.18.150.
History

Wed, 03 Sep 2025 17:45:00 +0000

Type Values Removed Values Added
First Time appeared Whatsapp whatsapp Business
CPEs cpe:2.3:a:whatsapp:whatsapp:*:*:*:*:business:android:*:* cpe:2.3:a:whatsapp:whatsapp_business:*:*:*:*:*:android:*:*
Vendors & Products Whatsapp whatsapp Business

cve-icon MITRE

Status: PUBLISHED

Assigner: facebook

Published:

Updated: 2024-08-05T06:01:48.697Z

Reserved: 2018-01-26T00:00:00

Link: CVE-2018-6339

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2019-06-14T17:29:02.003

Modified: 2025-09-03T17:36:53.303

Link: CVE-2018-6339

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.