5 matches found
CVE-2022-2023
Incorrect Use of Privileged APIs in GitHub repository polonel/trudesk prior to 1.2.4...
CVE-2022-20223
In assertSafeToStartCustomActivity of AppRestrictionsFragment.java, there is a possible way to start a phone call without permissions due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...
CVE-2022-2023
Incorrect Use of Privileged APIs in GitHub repository polonel/trudesk prior to 1.2.4...
CVE-2022-2023 Incorrect Use of Privileged APIs in polonel/trudesk
Incorrect Use of Privileged APIs in GitHub repository polonel/trudesk prior to 1.2.4...
CVE-2022-2023
CVE-2022-2023 concerns polonel/trudesk before 1.2.4 due to incorrect use of privileged APIs. Affected: polonel/trudesk, prior to 1.2.4. Root cause: improper handling of privileged APIs within the GitHub repo. Impact (as per sources): high severity with network attack vector and partial confidenti...