CVE-2025-43976

The com.enflick.android.tn2ndLine application through 24.17.1.0 for Android enables any installed application with no permissions to place phone calls without user interaction by sending a crafted intent via the com.enflick.android.TextNow.activities.DialerActivity component...

CVE-2024-36064

The NLL com.nll.cb aka ACR Phone application through 0.330-playStore-NoAccessibility-arm8 for Android allows any installed application with no permissions to place phone calls without user interaction by sending a crafted intent via the com.nll.cb.dialer.dialer.DialerActivity component...

PT-2025-2450 · Enflick · Textnow

Name of the Vulnerable Software and Affected Versions: TextNow: Call + Text Unlimited version 24.17.0.2 Description: The issue allows any installed application, without requiring permissions, to place phone calls without user interaction. This is achieved by sending a crafted intent via the...

PT-2025-2999 · Unknown · Com.Remi.Colorphone.Callscreen.Calltheme.Callerscreen

Name of the Vulnerable Software and Affected Versions: com.remi.colorphone.callscreen.calltheme.callerscreen aka Color Phone: Call Screen Theme versions through 21.1.9 for Android Description: The issue allows any application to place phone calls without user interaction by sending a crafted inte...

Wallfinity: Lovely Caller Theme iCaller Caller Theme & Dialer 安全漏洞

Wallfinity: Lovely Caller Theme iCaller Caller Theme & Dialer is a premium color caller screen and dialer from Wallfinity: Lovely Caller Theme. A security vulnerability exists in Wallfinity: Lovely Caller Theme iCaller Caller Theme & Dialer 1.1 and prior versions, which stems from a crafted inten...

HK DEVERLOP: Personalize Your World Call Theme & Call Screen 安全漏洞

HK DEVERLOP: Personalize Your World Call Theme & Call Screen is a call theme screen from HK DEVERLOP: Personalize Your World. A security vulnerability exists in HK DEVERLOP: Personalize Your World Call Theme & Call Screen version 1.0.7 and earlier, which originates from a call that can be sent vi...

PT-2025-3002 · Unknown · Com.Callos14.Callscreen.Colorphone

Name of the Vulnerable Software and Affected Versions: com.callos14.callscreen.colorphone also known as iCall OS17 - Color Phone Flash versions 4.3 and earlier Description: The issue allows any application to place phone calls without user interaction by sending a crafted intent via the...

CVE-2024-37575

The Mister org.mistergroup.shouldianswer application 1.4.264 for Android enables any installed application with no permissions to place phone calls without user interaction by sending a crafted intent via the org.mistergroup.shouldianswer.ui.defaultdialer.DefaultDialerActivity component...

CVE-2023-49003

An issue in simplemobiletools Simple Dialer 5.18.1 allows an attacker to bypass intended access restrictions via interaction with com.simplemobiletools.dialer.activities.DialerActivity...

CVE-2023-49003

An issue in simplemobiletools Simple Dialer 5.18.1 allows an attacker to bypass intended access restrictions via interaction with com.simplemobiletools.dialer.activities.DialerActivity...

Simple Dialer Security Vulnerability

Simple Dialer is a handy phone call manager from Simple Mobile Tools open source. A security vulnerability exists in Simple Mobile Tools Simple Dialer version 5.18.1, which stems from a vulnerability that allows an attacker to bypass access restrictions through interaction with...

CVE-2023-42468

The com.cutestudio.colordialer application through 2.1.8-2 for Android allows a remote attacker to initiate phone calls without user consent, because of improper export of the com.cutestudio.dialer.activities.DialerActivity component. A third-party application without any permissions can craft an...

CVE-2023-42468

The com.cutestudio.colordialer application through 2.1.8-2 for Android allows a remote attacker to initiate phone calls without user consent, because of improper export of the com.cutestudio.dialer.activities.DialerActivity component. A third-party application without any permissions can craft an...

CVE-2023-42469

The com.full.dialer.top.secure.encrypted application through 1.0.1 for Android enables any installed application with no permissions to place phone calls without user interaction by sending a crafted intent via the com.full.dialer.top.secure.encrypted.activities.DialerActivity component...

CVE-2023-42469

The com.full.dialer.top.secure.encrypted application through 1.0.1 for Android enables any installed application with no permissions to place phone calls without user interaction by sending a crafted intent via the com.full.dialer.top.secure.encrypted.activities.DialerActivity component...

PT-2023-28358 · Unknown · Com.Cutestudio.Colordialer

Name of the Vulnerable Software and Affected Versions: com.cutestudio.colordialer versions 2.1.8-2 and earlier Description: The issue allows a remote attacker to initiate phone calls without user consent due to improper export of the com.cutestudio.dialer.activities.DialerActivity component. A...