exploitDog

CVE-2024-36063

Опубликовано: 07 нояб. 2024

Источник: nvd

CVSS3: 7.5

EPSS Низкий

Описание

The Goodwy com.goodwy.dialer (aka Right Dialer) application through 5.1.0 for Android enables any application (with no permissions) to place phone calls without user interaction by sending a crafted intent via the com.goodwy.dialer.activities.DialerActivity component.

Ссылки

https://github.com/actuator/com.goodwy.dialer/blob/main/CVE-2024-36063

EPSS

Процентиль: 25%

0.00085

Низкий

7.5 High

CVSS3

Дефекты

CWE-276

Связанные уязвимости

GHSA-rpqv-x6cm-mjw9

CVSS3: 7.5

github

около 1 года назад

The Goodwy com.goodwy.dialer (aka Right Dialer) application through 5.1.0 for Android enables any application (with no permissions) to place phone calls without user interaction by sending a crafted intent via the com.goodwy.dialer.activities.DialerActivity component.

EPSS

Процентиль: 25%

0.00085

Низкий

7.5 High

CVSS3

Дефекты

CWE-276