<ul><li>A critical security flaw has been discovered in WhatsApp Desktop for Windows, allowing attackers to execute malicious code through seemingly harmless file attachments.</li><li>The vulnerability, tracked as CVE-2025-30401, affects versions prior to 2.2450.6 and poses a serious risk to users opening attachments in the app.</li><li>The flaw lies in how WhatsApp processes file attachments, displaying them based on the MIME type and opening them based on the file extension, leading to a mismatch vulnerability.</li><li>Users are strongly urged to update to version 2.2450.6 or later to mitigate the risk of remote code execution through deceptive attachments.</li></ul>

Critical WhatsApp bug lets hackers exploit file attachments on Windows

Discover more