{
  "is": "issue",
  "title": "WhatsApp Malicious Messages",
  "body": "\u003cp\u003eA \u003ca href=\"https://www.whatsapp.com/security/advisories/2026\"\u003eWhatsApp security advisory\u003c/a\u003e announced a discovered vulnerability,\ntracked as \u003ca href=\"https://app.opencve.io/cve/CVE-2026-23866\"\u003eCVE-2026-23866\u003c/a\u003e, arises from incomplete validation of AI rich\nresponse messages that contain Instagram Reels references within WhatsApp.\u003c/p\u003e\n\u003cp\u003eThis vulnerability allows a malicious user to craft a message that triggers the victim’s device to fetch and process\nmedia content from an external URL.\nIn some cases, the media content may invoke OS‑controlled custom URL scheme handlers,\npotentially executing arbitrary code or launching unintended applications.\nThe CVSS score of 4.3 indicates moderate impact and a non‑zero but limited likelihood of exploitation.\u003c/p\u003e\n\u003cp\u003eWe have confirmed via MDM that all Android handsets operated by SR2 Communications have since upgraded to unaffected\nversions.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eIf you self-manage your handset for your Link helpdesk\u0026rsquo;s WhatsApp channel it is your responsibility to follow vendor\nsecurity advisories and ensure that the handset operating system and applications are secured and regularly patched.\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eAs always, if you have any concerns please \u003ca href=\"https://www.sr2.uk/support\"\u003econtact our helpdesk\u003c/a\u003e.\u003c/p\u003e\n",
  "createdAt": "2026-05-01 09:00:00 +0000 UTC",
  "lastMod": "2026-05-22 11:02:44 +0100 +0100",
  "permalink": "https://status.sr2.uk/issues/2026-05-01-whatsapp-ai-rich-response/",
  "severity": "notice",
  "resolved": false,
  "informational": true,
  "resolvedAt": "<no value>",
  "affected": ["Link Helpdesks"],
  "filename": "2026-05-01-whatsapp-ai-rich-response.md"
}