Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2019-11931
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
A stack-based buffer overflow could be triggered in WhatsApp by sending a specially crafted MP4 file to a WhatsApp user. The issue was present in parsing the elementary stream metadata of an MP4 file and could result in a DoS or RCE. This affects Android versions prior to 2.19.274, iOS versions prior to 2.19.100, Enterprise Client versions prior to 2.25.3, Business for Android versions prior to 2.19.104 and Business for iOS versions prior to 2.19.100.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
栈缓冲区溢出
Source: NVD (National Vulnerability Database)
Vulnerability Title
Facebook WhatsApp 缓冲区错误漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Facebook WhatsApp是美国Facebook公司的一套利用网络传送短信的移动应用程序。该应用程序通过智能手机中的联络人信息,查找使用该软件的联络人传送文字、图片等。 Facebook WhatsApp中存在缓冲区错误漏洞,该漏洞源于程序解析基本数据流元数据时没有正确验证边界。远程攻击者可借助特制文件利用该漏洞执行任意代码,或导致拒绝服务。以下产品及版本受到影响:基于Android平台的Facebook WhatsApp 2.19.274之前版本,基于iOS平台的WhatsApp 2.19.10
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
VendorProductAffected VersionsCPESubscribe
FacebookWhatsApp for Android 2.19.274 -
FacebookWhatsApp for iOS 2.19.100 -
FacebookWhatsApp for Windows Phone unspecified ~ 2.18.368 -
FacebookWhatsApp Enterprise Client 2.25.3 -
FacebookWhatsApp Business for Android 2.19.104 -
FacebookWhatsApp Business for iOS 2.19.100 -
II. Public POCs for CVE-2019-11931
#POC DescriptionSource LinkShenlong Link
1cve-2019-11931https://github.com/kasif-dekel/whatsapp-rce-patchedPOC Details
2Nonehttps://github.com/nop-team/CVE-2019-11931POC Details
AI-Generated POCPremium

No public POC found.

Login to generate AI POC
III. Intelligence Information for CVE-2019-11931
Please Login to view more intelligence information
IV. Related Vulnerabilities
Same product: WhatsApp for Android
Same vendor: Facebook
Same weakness: CWE-121
V. Comments for CVE-2019-11931

No comments yet

Leave a comment