CVE-2025-30401

Name of the Vulnerable Software and Affected Versions WhatsApp versions prior to 2.2450.6

Description A spoofing issue in WhatsApp for Windows allows attackers to disguise malicious files as harmless attachments, potentially leading to remote code execution when opened. The vulnerability is related to how the app handles file attachments, displaying them according to their MIME type but selecting the file opening handler based on the attachment's filename extension. A maliciously crafted mismatch could cause the recipient to inadvertently execute arbitrary code rather than view the attachment. There is no evidence of exploitation in the wild.

Recommendations Update WhatsApp to version 2.2450.6 or later to mitigate the risk of this vulnerability. As a temporary workaround, consider avoiding opening attachments from unknown sources and being cautious when interacting with files sent through WhatsApp. Restrict access to the vulnerable file handling module to minimize the risk of exploitation.