exploitDog

GHSA-wrvq-q9qh-872j

Опубликовано: 04 дек. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 8.2

Описание

The GriceMobile com.grice.call application 4.5.2 for Android enables any installed application (with no permissions) to place phone calls without user interaction by sending a crafted intent via the com.iui.mobile.presentation.MobileActivity.

The GriceMobile com.grice.call application 4.5.2 for Android enables any installed application (with no permissions) to place phone calls without user interaction by sending a crafted intent via the com.iui.mobile.presentation.MobileActivity.

Ссылки

EPSS

Процентиль: 27%

0.00093

Низкий

8.2 High

CVSS3

CVE ID

Дефекты

CWE-732

Связанные уязвимости

CVE-2024-37574

CVSS3: 8.2

nvd

около 1 года назад

The GriceMobile com.grice.call application 4.5.2 for Android enables any installed application (with no permissions) to place phone calls without user interaction by sending a crafted intent via the com.iui.mobile.presentation.MobileActivity.

EPSS

Процентиль: 27%

0.00093

Низкий

8.2 High

CVSS3

CVE ID

Дефекты

CWE-732