The Call Blocker application 6.6.3 for Android incorrectly opens a key component that an attacker can use to inject large amounts of dirty data into the application's database. When the application starts, it loads the data from the database into memory. Once the attacker injects too much data, the application triggers an OOM error and crashes, resulting in a persistent denial of service.
References
Link | Resource |
---|---|
https://github.com/LianKee/SO-CVEs/blob/main/CVEs/CVE-2023-29726/CVE%20detail.md | Exploit Third Party Advisory |
https://play.google.com/store/apps/details?id=com.cuiet.blockCalls | Product |
https://www.call-blocker.info/ | Product |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2023-05-30T00:00:00
Updated: 2023-05-30T00:00:00
Reserved: 2023-04-07T00:00:00
Link: CVE-2023-29726
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-05-30T23:15:09.513
Modified: 2023-06-07T02:39:01.227
Link: CVE-2023-29726
JSON object: View
Redhat Information
No data.
CWE