Vulnerabilities > CVE-2023-49002 - Unspecified vulnerability in Xenomtechnologies Phone Dialer-Voice Call Dialer 1.2.5

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

HIGH

Availability impact

NONE

network

low complexity

xenomtechnologies

NVD

Published: 2023-12-27

Updated: 2024-01-05

Summary

An issue in Xenom Technologies (sinous) Phone Dialer-voice Call Dialer v.1.2.5 allows an attacker to bypass intended access restrictions via interaction with com.funprime.calldialer.ui.activities.OutgoingActivity.

Vulnerable Configurations

Part	Description	Count
Application	Xenomtechnologies Xenomtechnologies Phone Dialer Voice Call Dialer 1.2.5	1

References

https://github.com/actuator/com.sinous.voice.dialer/blob/main/CWE-928.md
https://github.com/actuator/cve/blob/main/CVE-2023-49002