Filtered by CWE-925
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2023-44126 2 Google, Lg 2 Android, V60 Thin Q 5g 2023-10-02 5.5 Medium
The vulnerability is that the Call management ("com.android.server.telecom") app patched by LG sends a lot of LG-owned implicit broadcasts that disclose sensitive data to all third-party apps installed on the same device. Those intents include data such as call states, durations, called numbers, contacts info, etc.