30-08-25, 12:37 AM
[color=oklch(0.3039 0.04 213.68)]CVE-2025-55177 exposed WhatsApp users on iOS and Mac to targeted attacks by allowing malicious actors to exploit incomplete authorization in linked device sync. Attackers could trigger content handling from arbitrary URLs on victims’ devices, especially when paired with Apple’s OS-level zero-day CVE-2025-43300.[/color]
[color=oklch(0.3039 0.04 213.68)]This vulnerability was seen in a sophisticated campaign targeting high-profile users.
Immediate updates to WhatsApp and Apple devices are strongly advised for protection.[/color]
Immediate updates to WhatsApp and Apple devices are strongly advised for protection.[/color]