9 matches found
CVE-2022-23835
The Visual Voice Mail VVM application through 2022-02-24 for Android allows persistent access if an attacker temporarily controls an application that has the READSMS permission, and reads an IMAP credentialing message that is by design not displayed to the victim within the AOSP SMS/MMS messaging...
The vulnerability of IMAP servers for direct-access voice mail systems with the Visual Voice Mail (VVM) visual interface for Android allows a perpetrator to gain unauthorized access to protected information.
The vulnerability of IMAP servers for direct-access voice mail services with the Visual Voice Mail VVM visual interface on Android devices is related to insufficient protection of service data. Exploiting this vulnerability could allow an attacker operating remotely to gain unauthorized access to...
CVE-2022-23835
The Visual Voice Mail VVM application through 2022-02-24 for Android allows persistent access if an attacker temporarily controls an application that has the READSMS permission, and reads an IMAP credentialing message that is by design not displayed to the victim within the AOSP SMS/MMS messaging...
CVE-2022-23835
The Visual Voice Mail VVM application through 2022-02-24 for Android allows persistent access if an attacker temporarily controls an application that has the READSMS permission, and reads an IMAP credentialing message that is by design not displayed to the victim within the AOSP SMS/MMS messaging...
Design/Logic Flaw
DISPUTED The Visual Voice Mail VVM application through 2022-02-24 for Android allows persistent access if an attacker temporarily controls an application that has the READSMS permission, and reads an IMAP credentialing message that is by design not displayed to the victim within the AOSP SMS/MMS...
CVE-2022-23835
The Visual Voice Mail VVM application through 2022-02-24 for Android allows persistent access if an attacker temporarily controls an application that has the READSMS permission, and reads an IMAP credentialing message that is by design not displayed to the victim within the AOSP SMS/MMS messaging...
CVE-2022-23835
The CVE-2022-23835 issue affects Visual Voice Mail (VVM) for Android (up to 2022-02-24). A local attacker who temporarily controls an app with the READ_SMS permission can read an IMAP credentialing message that the AOSP SMS/MMS app does not display to the user, allowing persistent access to VVM d...
Visual Voice Mail 访问控制错误漏洞
Visual Voice Mail is visual voicemail. An Access Control Error vulnerability exists in Visual Voice Mail that stems from the product allowing temporary access to read SMS messages and read an IMAP authentication message. The following products and versions are affected: Visual Voice Mail version...
PT-2021-6395 · Google · Aosp Sms/Mms
Name of the Vulnerable Software and Affected Versions: Visual Voice Mail VVM application through 2022-02-24 for Android Description: The issue is related to insufficient protection of service data in the Visual Voice Mail VVM application for Android. An attacker can exploit this by temporarily...