Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up

CVE-2019-11931

UNKNOWN
Published 2019-11-14T22:55:52
Actions:

Expert Analysis

Professional remediation guidance

Get tailored security recommendations from our analyst team for CVE-2019-11931. We'll provide specific mitigation strategies based on your environment and risk profile.

No CVSS data available

Description

A stack-based buffer overflow could be triggered in WhatsApp by sending a specially crafted MP4 file to a WhatsApp user. The issue was present in parsing the elementary stream metadata of an MP4 file and could result in a DoS or RCE. This affects Android versions prior to 2.19.274, iOS versions prior to 2.19.100, Enterprise Client versions prior to 2.25.3, Business for Android versions prior to 2.19.104 and Business for iOS versions prior to 2.19.100.

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

Affected Products

Facebook

WhatsApp for Android

Affected Versions:

2.19.274 unspecified
Facebook

WhatsApp for iOS

Affected Versions:

2.19.100 unspecified
Facebook

WhatsApp for Windows Phone

Affected Versions:

unspecified
Facebook

WhatsApp Enterprise Client

Affected Versions:

2.25.3 unspecified
Facebook

WhatsApp Business for Android

Affected Versions:

2.19.104 unspecified
Facebook

WhatsApp Business for iOS

Affected Versions:

2.19.100 unspecified

GitHub Security Advisories

Community-driven vulnerability intelligence from GitHub

⚠ Unreviewed MODERATE

GHSA-6c69-f792-7pq7

Advisory Details

A stack-based buffer overflow could be triggered in WhatsApp by sending a specially crafted MP4 file to a WhatsApp user. The issue was present in parsing the elementary stream metadata of an MP4 file and could result in a DoS or RCE. This affects Android versions prior to 2.19.274, iOS versions prior to 2.19.100, Enterprise Client versions prior to 2.25.3, Business for Android versions prior to 2.19.104 and Business for iOS versions prior to 2.19.100.

CVSS Scoring

CVSS Score

5.0

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2019-11931
WEB https://www.facebook.com/security/advisories/cve-2019-11931

Advisory provided by GitHub Security Advisory Database. Published: May 24, 2022, Modified: May 24, 2022

References

https://www.facebook.com/security/advisories/cve-2019-11931
Published: 2019-11-14T22:55:52
Last Modified: 2024-08-04T23:10:29.691Z
Copied to clipboard!