Meta warned Windows users to update the WhatsApp messaging app to the latest version to patch a vulnerability that can let attackers execute malicious code on their devices.

Described as a spoofing issue and tracked as CVE-2025–30401, this security flaw can be exploited by attackers by sending maliciously crafted files with altered file types to potential targets.

Meta says the vulnerability impacted all WhatsApp versions and has been fixed with the release of WhatsApp 2.2450.6.