he vulnerability is that the Call management ("com.android.server.telecom") app patched by LG launches implicit intents that disclose sensitive data to all third-party apps installed on the same device. Those intents include data such as contact details and phone numbers.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://lgsecurity.lge.com/bulletins/mobile#updateDetails |
History
Fri, 20 Sep 2024 20:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: LGE
Published: 2023-09-27T14:05:24.523Z
Updated: 2024-09-20T19:46:53.170Z
Reserved: 2023-09-26T05:57:13.719Z
Link: CVE-2023-44127
Vulnrichment
Updated: 2024-08-02T19:59:50.998Z
NVD
Status : Modified
Published: 2023-09-27T15:19:37.067
Modified: 2024-11-21T08:25:18.113
Link: CVE-2023-44127
Redhat
No data.