5 matches found
CVE-2024-53935
The com.callos14.callscreen.colorphone aka iCall OS17 - Color Phone Flash application through 4.3 for Android enables any application with no permissions to place phone calls without user interaction by sending a crafted intent via the com.callos14.callscreen.colorphone.DialerActivity component...
CVE-2024-53935
creationtimestamp| type| source ---|---|--- 2025-01-06 22:09:29+00:00| seen| https://infosec.exchange/users/cve/statuses/113783692874413440 2025-01-06 22:37:43+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/267 2025-01-07 00:28:29+00:00| seen| https://t.me/cvedetector/14...
CVE-2024-53935
The com.callos14.callscreen.colorphone aka iCall OS17 - Color Phone Flash application through 4.3 for Android enables any application with no permissions to place phone calls without user interaction by sending a crafted intent via the com.callos14.callscreen.colorphone.DialerActivity component...
CVE-2024-53935
The com.callos14.callscreen.colorphone aka iCall OS17 - Color Phone Flash application through 4.3 for Android enables any application with no permissions to place phone calls without user interaction by sending a crafted intent via the com.callos14.callscreen.colorphone.DialerActivity component...
CVE-2024-53935
CVE-2024-53935 affects the Android app com.callos14.callscreen.colorphone (aka iCall OS17 - Color Phone Flash) ≤ 4.3. The vulnerability lies in the DialerActivity component, where a crafted intent can be sent by any application with no permissions to initiate phone calls without user interaction....