WhatsApp has issued an update to address a vulnerability involving linked device synchronization messages.
The issue, identified as CVE-2025-55177, affected certain versions of WhatsApp for iOS, WhatsApp Business for iOS, and WhatsApp for Mac. It involved incomplete authorization during message processing, which could have enabled an attacker to trigger the processing of content from an arbitrary URL on a target device.
While exploiting this flaw would require a targeted and sophisticated attack, it presented a potential security risk when combined with a related OS-level vulnerability (CVE-2025-43300) on Apple devices.
Users are advised to update their applications to the latest versions:
- iOS users should upgrade to version 2.25.21.73 or later
- WhatsApp Business users should update to 2.25.21.78 or later
- Mac users should ensure they are running version 2.25.21.78 or newer.
It is recommended that users verify their app versions and install updates promptly to ensure their devices remain secure.
Visit WhatsApp’s security advisories page for more information on vulneability and update information here.
Leave a Reply