CVE-2025-43976

The com.enflick.android.tn2ndLine application through 24.17.1.0 for Android enables any installed application with no permissions to place phone calls without user interaction by sending a crafted intent via the com.enflick.android.TextNow.activities.DialerActivity component...

CVE-2024-20885

Improper component protection vulnerability in Samsung Dialer prior to SMR May-2024 Release 1 allows local attackers to make a call without proper permission...

PT-2025-2450 · Enflick · Textnow

Name of the Vulnerable Software and Affected Versions: TextNow: Call + Text Unlimited version 24.17.0.2 Description: The issue allows any installed application, without requiring permissions, to place phone calls without user interaction. This is achieved by sending a crafted intent via the...

CVE-2024-20885

Improper component protection vulnerability in Samsung Dialer prior to SMR May-2024 Release 1 allows local attackers to make a call without proper permission...

CVE-2016-11046

An issue was discovered on Samsung mobile devices with JBP4.3, KK4.4, and L5.0/5.1 software. Because of a misused whitelist, attackers can reach the radio layer aka RIL or RILD to place calls or send SMS messages. The Samsung ID is SVE-2016-5733 May 2016...

Cisco Small Business IP phones SPA 300 and SPA 500 Information Disclosure Vulnerabilities

Cisco Small Business IP phones SPA 300 and SPA 500 are the SPA 300 and SPA 500 series of IP VoIP products from Cisco. A security vulnerability exists in the default configuration of Cisco Small Business IP phones SPA 300 version 7.5.5 and SPA 500 version 7.5.5. Because the program fails to set up...