Skip to content
  • Home
    • Message privatelyStay connectedConnect in groupsExpress yourselfWhatsApp for business
  • Privacy
  • Help Center
  • Blog
  • For Business
  • Download
Download
Terms & Privacy Policy2025 © WhatsApp LLC
WhatsApp Main PageWhatsApp Main Page
    • Message privately

      End-to-end encryption and privacy controls.

    • Stay connected

      Message and call for free* around the world.

    • Connect in groups

      Group messaging made easy.

    • Express yourself

      Say it with stickers, voice, GIFs and more.

    • WhatsApp business

      Reach your customers from anywhere.

  • Privacy
  • Help Center
  • Blog
  • For Business
  • Apps
Log inDownload

WhatsApp Security Advisories

2025 Updates

CVE-2025-30401

A spoofing issue in WhatsApp for Windows prior to version 2.2450.6 displayed attachments according to their MIME type but selected the file opening handler based on the attachment’s filename extension. A maliciously crafted mismatch could have caused the recipient to inadvertently execute arbitrary code rather than view the attachment when manually opening the attachment inside WhatsApp. We have not seen evidence of exploitation in the wild.

Acknowledgements: External Researcher via Meta Bug Bounty submission

Download
WhatsApp Main Logo
WhatsApp Main Logo
Download
What we doFeaturesBlogSecurityFor Business
Who we areAbout usCareersBrand CenterPrivacy
Use WhatsAppAndroidiPhoneMac/PCWhatsApp Web
Need help?Contact UsHelp CenterAppsSecurity Advisories
Download

2025 © WhatsApp LLC

Terms & Privacy Policy
Sitemap