CVE-2023-33907
The CVE-2023-33907 issue is described across multiple sources as a flaw in the Contacts Service where a missing permission check can allow local information disclosure without requiring additional execution privileges. The Red Hat entry explicitly notes a missing permission check as the root caus...