Astra Linux - уязвимость в ofono

oFono SMS Decoder Stack-based Buffer Overflow Privilege Escalation Vulnerability. This vulnerability allows local attackers to execute arbitrary code on affected installations of oFono. An attacker must first obtain the ability to execute code on the target modem in order to exploit this...

CVE-2025-54328

CVE-2025-54328 is a stack-based buffer overflow vulnerability in Samsung Exynos baseband SMS RP-DATA parser affecting multiple Exynos models (980/990/850/1080/2100/1280/2200/1330/1380/1480/2400/1580/2500/1680/9110/W9xx/W1000 and Modems 5123/5300/5400/5410). The issue arises when parsing SMS RP-DA...

Samsung多款产品 安全漏洞

SAMSUNG Exynos 980 is a product of South Korea’s Samsung Corporation. The SAMSUNG Exynos 980 is the first 5G-integrated SOC product, as well as the world’s first A77 architecture processor. The SAMSUNG Exynos 2100 is a high-end SOC with 8 cores across three clusters and an integrated Arm...

EUVD-2011-4687

Malware in sbrugna...

CVE-2025-10184

The vulnerability allows any application installed on the device to read SMS/MMS data and metadata from the system-provided Telephony provider without permission, user interaction, or consent. The user is also not notified that SMS data is being accessed. This could lead to sensitive information...

CVE-2025-10184 OnePlus OxygenOS Telephony provider permission bypass

The vulnerability allows any application installed on the device to read SMS/MMS data and metadata from the system-provided Telephony provider without permission, user interaction, or consent. The user is also not notified that SMS data is being accessed. This could lead to sensitive information...

CVE-2025-10184: OnePlus OxygenOS Telephony provider permission bypass (FIXED as of October 11, 2025)

Overview Rapid7 has identified a permission bypass vulnerability in multiple versions of OnePlus OxygenOS installed on its Android smartphones, across multiple devices. It is expected that a wider range of devices than those tested are affected. When leveraged, the vulnerability allows any...

CVE-2011-4704

The Voxofon com.voxofon application before 2.5.2 for Android does not properly protect data, which allows remote attackers to read or modify SMS information via a crafted application...

CVE-2022-45118

OpenHarmony-v3.1.2 and prior versions had a vulnerability that telephony in communication subsystem sends public events with personal data, but the permission is not set. Malicious apps could listen to public events and obtain information such as mobile numbers and SMS data without permissions...

Information disclosure

OpenHarmony-v3.1.2 and prior versions had a vulnerability that telephony in communication subsystem sends public events with personal data, but the permission is not set. Malicious apps could listen to public events and obtain information such as mobile numbers and SMS data without permissions...

OpenHarmony 安全漏洞

OpenHarmony is a kind of Hongmeng operating system open source project of China OpenAtom Foundation OpenAtom Foundation Foundation. OpenHarmony telephonystateregistrytelephonysmsmms security vulnerability, the vulnerability in the communication subsystem of the phone to send public events with...

CVE-2022-20280

In MMSProvider, there is a possible read of protected data due to improper input validationSQL injection. This could lead to local information disclosure of sms/mms data with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...

CVE-2022-20280

In MMSProvider, there is a possible read of protected data due to improper input validationSQL injection. This could lead to local information disclosure of sms/mms data with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...

Google Android SQL注入漏洞

Google Android is a Linux-based open source operating system from Google, Inc. in the United States. A security vulnerability exists in Google Android 13, which stems from improper input validation SQL injection in MMSProvider that may read protected data, which may lead to local information...

CVE-2018-15004

The Coolpad Canvas device with a build fingerprint of Coolpad/cp3636a/cp3636a:7.0/NRD90M/093031423:user/release-keys contains a platform app with a package name of com.qualcomm.qti.modemtestmode versionCode=24, versionName=7.0 that contains an exported service app component named...

From Now On, Only Default Android Apps Can Access Call Log and SMS Data

A few hours ago the company announced its "non-shocking" plans to shut down Google+ social media network following a "shocking" data breach incident. Now to prevent abuse and potential leakage of sensitive data to third-party app developers, Google has made several significant changes giving user...

NSA Hacks into 3 major Chinese operators to steal millions of SMS Data

Once again NSA whistleblower Edward Snowden revealed the truth, that the NSA hacks into China's mobile operators to steal millions of text messages. Every month Washington come up with new reports and accuse other nations, particularly China, for cyber hacking, but the biggest culprit of such cri...

NSA Hacks into 3 major Chinese operators to steal millions of SMS Data

Once again NSA whistleblower Edward Snowden revealed the truth, that the NSA hacks into China’s mobile operators to steal millions of text messages. Every month Washington come up with new reports and accuse other nations, particularly China, for cyber hacking, but the biggest culprit of such cri...

Design/Logic Flaw

The Voxofon com.voxofon application before 2.5.2 for Android does not properly protect data, which allows remote attackers to read or modify SMS information via a crafted application...

HTC Android Vulnerability - Exposes Phone numbers, Gps, SMS, Emails etc

HTC Android Vulnerability - Exposes Phone numbers, Gps, SMS, Emails etc If you are running a HTC Android smartphone with the latest updates applied, chances are your personal data is freely accessible to any app you have given network access to in the form of full Internet permissions.This...