Whatsapp has now released a security update to fix two critical security flaws in the messaging service’s IOS and Android apps.
According to cybersecurity firm Malwarebytes, the vulnerabilities could be used to take control of the app. The flaws are to be found in Whatsapp and Whatsapp Business for Android and IOS that do not run version 184.108.40.206 or later.
The Hacker News writes that one of the vulnerabilities (CVE-2022-36934), which has a CVSS rating of 9.8 out of 10, could be used to execute arbitrary code by simply opening a video call.
The second vulnerability (CVE-2022-27492), with a CVSS score of 7.8, could be activated by the victim receiving a specially crafted video file.