{"uuid": "78ee7f4e-d851-4cf0-ab82-4b264a84010a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-0622", "type": "published-proof-of-concept", "source": "https://t.me/cKure/11494", "content": "\u25a0\u25a0\u25a0\u25a1\u25a1 Exclusive!\n\nWhatsApp fixes bug without rewarding the researcher.\n\nThe issue was considered, not a bug by Facebook (was not Meta when reported) and called the attack 'theoretical'.\n\nSkype had the exact same bug registered under CVE-2019-0622.\n\n\u25cf The researcher (Asim K) shared evidences including the video and comments from now Meta team and we have verified it to be a valid security issue. We have blurred the video and marked the voice for privacy reasons.\n\nIn the video; researcher shows a locked phone receiving a WhatsApp call and the attacker (having physical access to locked phone) can get on to the contacts by UI interaction.", "creation_timestamp": "2023-09-03T22:29:20.000000Z"}