2 matches found
CVE-2019-17191
The Signal Private Messenger application before 4.47.7 for Android allows a caller to force a call to be answered, without callee user interaction, via a connect message. The existence of the call is noticeable to the callee; however, the audio channel may be open before the callee can block...
CVE-2019-17191
The CVE-2019-17191 entry concerns the Signal Private Messenger app for Android prior to version 4.47.7. The underling issue is a flow that lets a caller force a call to be answered via a connect message without recipient interaction. The callee is aware a call exists, but the audio channel may be...