An out-of-bounds read was possible in WhatsApp due to incorrect parsing of RTP extension headers. This issue affects WhatsApp for Android prior to 2.18.276, WhatsApp Business for Android prior to 2.18.99, WhatsApp for iOS prior to 2.18.100.6, WhatsApp Business for iOS prior to 2.18.100.2, and WhatsApp for Windows Phone prior to 2.18.224.
History

Wed, 03 Sep 2025 17:45:00 +0000

Type Values Removed Values Added
First Time appeared Whatsapp whatsapp Business
CPEs cpe:2.3:a:whatsapp:whatsapp:*:*:*:*:business:android:*:*
cpe:2.3:a:whatsapp:whatsapp:*:*:*:*:business:iphone_os:*:*
cpe:2.3:a:whatsapp:whatsapp_business:*:*:*:*:*:android:*:*
cpe:2.3:a:whatsapp:whatsapp_business:*:*:*:*:*:iphone_os:*:*
Vendors & Products Whatsapp whatsapp Business

cve-icon MITRE

Status: PUBLISHED

Assigner: facebook

Published:

Updated: 2024-08-05T06:01:48.744Z

Reserved: 2018-01-26T00:00:00

Link: CVE-2018-6350

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2019-06-14T17:29:02.283

Modified: 2025-09-03T17:36:53.303

Link: CVE-2018-6350

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.