Meta has disclosed two security vulnerabilities affecting WhatsApp, highlighting potential risks for users across platforms. The issues, identified through the company’s bug bounty program, have now been fixed, and there is no evidence of exploitation so far. However, the advisory underlines the importance of keeping apps updated to stay protected. The first vulnerability, tracked as CVE-2026-23863, affected WhatsApp for Windows. It involved an attachment spoofing issue where a malicious file could appear as a harmless document but execute as a program when opened. This type of flaw could potentially mislead users into running harmful files without realising it. The second vulnerability, CVE-2026-23866, impacted both Android and iOS versions of WhatsApp. It was linked to improper validation of certain media-related messages. Do you think that WhatsApp security is so low to protct its users ?
