CERT-In warns flaw stems from improper handling of linked devices’ synced messages.
Vulnerability could be combined with an Apple flaw for targeted attacks.
Users are advised to update WhatsApp immediately and avoid suspicious links.
If you are a WhatsApp user, then beware. India’s national cybersecurity agency, the Computer Emergency Response Team (CERT-In), has issued a high-risk advisory over a newly discovered vulnerability in WhatsApp. This vulnerability can allow attackers to bypass authorisation and gain unauthorised access to user data.
SurveyIn its latest vulnerability note (CIVN-2025-0200), CERT-In flagged that the flaw affects WhatsApp for iOS versions prior to 2.25.21.73, WhatsApp Business for iOS version 2.25.21.78, and WhatsApp for Mac version 2.25.21.78.
As per the agency, the issue arises from the improper handling of the linked devices’ synchronised messages. Exploitation of the flaw could let attackers trigger the processing of content from arbitrary URLs on a victim’s device, potentially leading to sensitive information disclosure.
CERT-In mentioned that in some cases, the flaw has been observed in combination with a recently disclosed Apple platform-level flaw (CVE-2025-43300). Together, the weaknesses could be leveraged in what the agency described as “sophisticated, targeted attacks.”
Also read: Oppo Find X8 Pro price drops by over Rs 14,000 on Amazon: How to grab this deal
According to the reports, the cybersecurity experts suggest that these growing risks of vulnerabilities in the popular instant messaging platform can be concerning for citizens. On the other hand, Meta and WhatsApp have not issued a public statement at the time of writing this article. However, the company typically releases security patches swiftly in response to such reports.
How to be safe
CERT-In has urged users to update to the latest versions of WhatsApp immediately to mitigate the risk. The agency also advised users to remain cautious of suspicious links or messages until patches are applied.
In the meantime, the instant messaging platform is reportedly working on an Instagram-like Close Friends feature for its Status updates. It is expected to work similarly to the Close Friends feature on Instagram.
Follow Us
Ashish Singh
Ashish Singh is the Chief Copy Editor at Digit. He's been wrangling tech jargon since 2020 (Times Internet, Jagran English '22). When not policing commas, he's likely fueling his gadget habit with coffee, strategising his next virtual race, or plotting a road trip to test the latest in-car tech. He speaks fluent Geek. View Full Profile
