February 17, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
Rewterz Threat Advisory – Multiple SolarWinds Access Rights Manager Vulnerabilities
October 20, 2023IcedID Banking Trojan aka BokBot – Active IOCs
October 22, 2023Rewterz Threat Advisory – Multiple SolarWinds Access Rights Manager Vulnerabilities
October 20, 2023IcedID Banking Trojan aka BokBot – Active IOCs
October 22, 2023
Severity
Medium
Analysis Summary
CVE-2023-38537 CVSS:5.6
WhatsApp is vulnerable to a denial of service, caused by a race condition in a network transport subsystem. By sending specially crafted audio/video calls, a remote attacker could exploit this vulnerability to cause app termination or unexpected control flow with very low probability.
CVE-2023-38538 CVSS:5
WhatsApp is vulnerable to a denial of service, caused by a race condition in an event subsystem. By sending specially crafted audio/video calls, a remote attacker could exploit this vulnerability to cause app termination or unexpected control flow with very low probability.
Impact
- Denial of Service
Indicators Of Compromise
CVE
- CVE-2023-38537
- CVE-2023-38538
Affected Vendors
Affected Products
- WhatsApp Inc.
Remediation
Refer to WhatsApp Security Advisories for patch, upgrade or suggested workaround information.