Design/Logic Flaw

2023-12-2722:15:00

PRIOn knowledge base

www.prio-n.com

xenom technologies

phone dialer

security flaw

access restrictions

outgoingactivity

nvd

7.1 High

AI Score

Confidence

Low

0.0005 Low

EPSS

Percentile

18.0%

JSON

An issue in Xenom Technologies (sinous) Phone Dialer-voice Call Dialer v.1.2.5 allows an attacker to bypass intended access restrictions via interaction with com.funprime.calldialer.ui.activities.OutgoingActivity.

CPENameOperatorVersion
phone_dialer-voice_call_dialereq1.2.5

CPE	Name	Operator	Version
	phone_dialer-voice_call_dialer	eq	1.2.5

References

github.com/actuator/com.sinous.voice.dialer/blob/main/CWE-928.md

github.com/actuator/cve/blob/main/CVE-2023-49002