PT-2025-3000 · Unknown · Com.Callerscreen.Colorphone.Themes.Callflash

Name of the Vulnerable Software and Affected Versions: com.callerscreen.colorphone.themes.callflash also known as Color Call Theme & Call Screen versions 1.0.7 and earlier Description: The issue allows any application to place phone calls without user interaction by sending a crafted intent via t...

PT-2025-3001 · Unknown · Com.Windymob.Callscreen.Ringtone.Callcolor.Colorphone +1

Name of the Vulnerable Software and Affected Versions: com.windymob.callscreen.ringtone.callcolor.colorphone aka Color Phone Call Screen Themes versions 1.1.2 and earlier Description: The issue allows any application to place phone calls without user interaction by sending a crafted intent via th...

PT-2025-2998 · Unknown · Com.Glitter.Caller.Screen

Name of the Vulnerable Software and Affected Versions: com.glitter.caller.screen versions 1.1 and earlier Description: The issue allows any application to place phone calls without user interaction by sending a crafted intent via the com.glitter.caller.screen.DialerActivity component. This enable...

Galaxy studio apps iCall OS17 Color Phone Flash 安全漏洞

Galaxy studio apps iCall OS17 Color Phone Flash is a default dialer application from Galaxy studio apps, Inc. A security vulnerability exists in Galaxy studio apps iCall OS17 Color Phone Flash version 4.3 and earlier, which originates from a crafted intent that can be sent via the...

CVE-2024-36064

The CVE concerns the NLL com.nll.cb (ACR Phone) Android app, up to version 0.330-playStore-NoAccessibility-arm8. The vulnerability is that any installed app with no permissions can trigger a call by sending a crafted intent to the DialerActivity (com.nll.cb.dialer.dialer.DialerActivity), enabling...

NLL APPS ACR Phone 安全漏洞

NLL APPS ACR Phone is a call recorder from NLL APPS. A security vulnerability exists in NLL APPS ACR Phone version 0.330 and earlier, which originates from an attacker being able to make a phone call without user interaction by sending a crafted intent to the com.nll.cb.dialer.dialer.DialerActivi...

PT-2024-26875 · Unknown · Com.Goodwy.Dialer

Name of the Vulnerable Software and Affected Versions: com.goodwy.dialer aka Right Dialer versions through 5.1.0 Description: The issue allows any application to place phone calls without user interaction by sending a crafted intent via the com.goodwy.dialer.activities.DialerActivity component...

Goodwy Right Dialer 安全漏洞

Goodwy Right Dialer is a dialer software from Goodwy. A security vulnerability exists in Goodwy Right Dialer version 5.1.0 and earlier, which originates from an attacker being able to make a phone call without user interaction by sending a crafted intent to the...

CVE-2023-42468

The com.cutestudio.colordialer application through 2.1.8-2 for Android allows a remote attacker to initiate phone calls without user consent, because of improper export of the com.cutestudio.dialer.activities.DialerActivity component. A third-party application without any permissions can craft an...