CVE-2019-3568 - WhatsApp VOIP Stack Buffer Overflow Vulnerability
Project:Meta Platforms
Product:WhatsApp
Date Added:2022-04-19Due Date:2022-05-10
Vulnerability Name
WhatsApp VOIP Stack Buffer Overflow Vulnerability
Description
A buffer overflow vulnerability in WhatsApp VOIP stack allowed remote code execution via specially crafted series of RTCP packets sent to a target phone number.
Known To Be Used in Ransomware Campaigns?
Unknown
Action
Apply updates per vendor instructions.
Additional Notes
https://nvd.nist.gov/vuln/detail/CVE-2019-3568
Related News Articles
NSO Group fined $167M for spyware attacks on 1,400 WhatsApp usersMay 7, 2025
NSO Group Fined $168M for Targeting 1,400 WhatsApp Users With Pegasus SpywareMay 7, 2025
U.S. Judge Rules Against NSO Group in WhatsApp Pegasus Spyware CaseDecember 23, 2024
NSO Group Exploited WhatsApp to Install Pegasus Spyware Even After Meta's LawsuitNovember 18, 2024