CVE-2025-55177 - PatchNow

Data Source: CIRCL

Confidence: HIGH

Exploitation Method: OTHER

CVE Published: 2025-08-29

Added to CISA KEV: 2025-09-02 4 DAYS BETWEEN CVE AND KEV

⚠️ CRITICAL: Check for indicators of compromise - this vulnerability is in CISA KEV indicating active exploitation in the wild. Review logs, check for unauthorized access, verify system integrity before patching
Update WhatsApp applications immediately to patched versions
Monitor for suspicious WhatsApp synchronization activities
High patch priority due to CISA KEV listing and active exploitation

CVE-2025-55177: Vulnerability in WhatsApp iOS & macOS ...
Explore details for CVE-2025-55177, a zero-day vulnerability in WhatsApp iOS and macOS messaging clients, with insights on the SOC Prime ...
WhatsApp vulnerability exploited in targeted zero-click attacks
CVE-2025-55177 allows unauthorized processing of remote content on a victim's device via crafted synchronization messages . It impacts WhatsApp for iOS prior to version 2.25. 21.73, WhatsApp Business for iOS, and WhatsApp for Mac prior to version 2.25. 21.78.
WhatsApp Flaw Added to CISA’s Known Exploited Vulnerabilities...
These were added due to evidence of active exploitation and are frequent attack vectors for malicious actors. CISA believes these flaws present ...
Known Exploited Vulnerabilities Catalog - CISA
... vulnerabilities and keep pace with threat activity—CISA maintains the authoritative source of vulnerabilities that have been exploited in the wild.
WhatsApp Patches Zero-Click Exploit Targeting iOS and macOS ...
The vulnerability, CVE-2025-55177 (CVSS score: 8.0), relates to a case of insufficient authorization of linked device synchronization messages.

🟢 CVE-2025-55177