CVE-2025-55177CISA KEV: Actively Exploited

Meta Platforms WhatsApp Incorrect Authorization Vulnerability

Published Sep 2, 2025·Updated Sep 2, 2025

Description

Meta Platforms WhatsApp contains an incorrect authorization vulnerability due to an incomplete authorization of linked device synchronization messages. This vulnerability could allow an unrelated user to trigger processing of content from an arbitrary URL on a target’s device.

Public Exploits & PoCs1 found

References

View on NVD Search GitHub Search Google

Get alerted for CVEs like this

Register your stack and get notified within minutes when a matching CVE drops.

Start monitoring free