Vulnerability:
Incomplete validation of rich response messages in WhatsApp for iOS prior to v2.25.23.73, WhatsApp Business for iOS v2.25.23.82, and WhatsApp for Mac v2.25.23.83 could have allowed a user to trigger processing of media content from an arbitrary URL on another user’s device. We have not seen evidence of exploitation in the wild.
| CVE | CVE-2025-55179 |
| CVSSv3 | 5.4 |
| Publised Date | 18 Nov 2025 |
| Impacted Version | WhatsApp iOS v2.25.23.73 WhatsApp Business iOS v2.25.23.82 WhatsApp mac IOS v2.25.23.83 |
| Exploitation | none |
Solution:
Update WhatsApp to latest version
Leave a Reply