3 matches found
CVE-2022-23835
The Visual Voice Mail VVM application through 2022-02-24 for Android allows persistent access if an attacker temporarily controls an application that has the READSMS permission, and reads an IMAP credentialing message that is by design not displayed to the victim within the AOSP SMS/MMS messaging...
PT-2021-6395 · Google · Aosp Sms/Mms
Name of the Vulnerable Software and Affected Versions: Visual Voice Mail VVM application through 2022-02-24 for Android Description: The issue is related to insufficient protection of service data in the Visual Voice Mail VVM application for Android. An attacker can exploit this by temporarily...
PT-2018-13127 · Ola Cabs · Ola Money
Name of the Vulnerable Software and Affected Versions: Ola Money aka com.olacabs.olamoney version 1.9.0 Description: An issue was discovered in the Ola Money application for Android. If an attacker controls an application with accessibility permissions and the ability to read SMS messages, then t...