cbcvebase.

Facebook Whatsapp Desktop For Windows vulnerabilities

4 known vulnerabilities affecting facebook/whatsapp_desktop_for_windows.

Total CVEs
4
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
MEDIUM4

Vulnerabilities

Page 1 of 1
CVE-2025-30401P3MEDIUMCVSS 6.7≥ 0.0.0, < 2.2450.62025-04-05
CVE-2025-30401 [MEDIUM] CVE-2025-30401: A spoofing issue in WhatsApp for Windows prior to version 2.2450.6 displayed attachments according t A spoofing issue in WhatsApp for Windows prior to version 2.2450.6 displayed attachments according to their MIME type but selected the file opening handler based on the attachment’s filename extension. A maliciously crafted mismatch could have caused the recipient to inadvertently execute arbitrary code rather than view the attachment when manually opening
nvd
CVE-2026-23863P4MEDIUMCVSS 6.5≥ 2.3000.*.252500, < 2.3000.1032164386.2587092026-05-01
CVE-2026-23863 [MEDIUM] CWE-158 CVE-2026-23863: An attachment spoofing issue in WhatsApp for Windows prior to v2.3000.1032164386.258709 could have a An attachment spoofing issue in WhatsApp for Windows prior to v2.3000.1032164386.258709 could have allowed maliciously formatted documents with embedded NUL bytes in the filename to be shown in the application as one type of file but run as an executable when opened. We have not seen evidence of exploitation in the wild.
nvd
CVE-2023-38537P4MEDIUMCVSS 5.6fixed in 2.2320.22023-10-04
CVE-2023-38537 [MEDIUM] CWE-362 CVE-2023-38537: A race condition in a network transport subsystem led to a heap use-after-free issue in established A race condition in a network transport subsystem led to a heap use-after-free issue in established or unsilenced incoming audio/video calls that could have resulted in app termination or unexpected control flow with very low probability.
nvd
CVE-2023-38538P4MEDIUMCVSS 5.0fixed in 2.2320.22023-10-04
CVE-2023-38538 [MEDIUM] CWE-362 CVE-2023-38538: A race condition in an event subsystem led to a heap use-after-free issue in established audio/video A race condition in an event subsystem led to a heap use-after-free issue in established audio/video calls that could have resulted in app termination or unexpected control flow with very low probability.
nvd
Facebook Whatsapp Desktop For Windows vulnerabilities | cvebase