Browse all 13 CVE security advisories affecting Meta. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Meta operates as a global social technology platform connecting users through Facebook, Instagram, and WhatsApp. Historically, common vulnerabilities include remote code execution, cross-site scripting, and privilege escalation, often stemming from complex web applications and third-party integrations. The company has faced scrutiny over data privacy practices, including the 2018 Cambridge Analytica incident involving improper data harvesting. With 13 current CVEs, Meta maintains a bug bounty program to address security issues, though its vast user base and attack surface continue to present significant security challenges. The platform's infrastructure remains a high-value target for threat actors seeking unauthorized access or data exfiltration.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-23870 | React Server DOM拒绝服务漏洞影响v19.0.0-v19.2.5 — react-server-dom-turbopack | 7.5 | High | 2026-05-06 |
| CVE-2026-23869 | React 安全漏洞 — react-server-dom-turbopack | 7.5 | High | 2026-04-08 |
| CVE-2026-23864 | Meta React Server Components 安全漏洞 — react-server-dom-webpack | 7.5AI | HighAI | 2026-01-26 |
| CVE-2025-67779 | Meta React Server Components 安全漏洞 — react-server-dom-parcel | 7.5 | High | 2025-12-11 |
| CVE-2025-55184 | Meta React Server Components 安全漏洞 — react-server-dom-webpack | 7.5 | High | 2025-12-11 |
| CVE-2025-55183 | Meta React Server Components 安全漏洞 — react-server-dom-webpack | 5.3 | Medium | 2025-12-11 |
| CVE-2025-55182 | Meta React Server Components 安全漏洞 — react-server-dom-webpack | 10.0 | Critical | 2025-12-03 |
| CVE-2025-30259 | WhatsApp 安全漏洞 — WhatsApp cloud service | 3.5 | Low | 2025-03-19 |
| CVE-2024-49400 | Taquito 安全漏洞 — Tacquito | 9.8AI | CriticalAI | 2024-10-17 |
| CVE-2023-5654 | React Developer Tools 安全漏洞 — React Developer Tools ExtensionCWE-285 | 6.5 | Medium | 2023-10-19 |
| CVE-2023-45239 | Facebook Tacacs+ 安全漏洞 — tac_plus | 9.8 | - | 2023-10-06 |
| CVE-2022-27492 | WhatsApp 数字错误漏洞 — WhatsApp Business for iOSCWE-191 | 7.8 | - | 2022-09-23 |
| CVE-2022-36934 | WhatsApp 输入验证错误漏洞 — WhatsApp for iOSCWE-122 | 9.8 | - | 2022-09-22 |
This page lists every published CVE security advisory associated with Meta. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.