Vulnerability Details CVE-2023-29726
The Call Blocker application 6.6.3 for Android incorrectly opens a key component that an attacker can use to inject large amounts of dirty data into the application's database. When the application starts, it loads the data from the database into memory. Once the attacker injects too much data, the application triggers an OOM error and crashes, resulting in a persistent denial of service.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 44.7%
CVSS Severity
CVSS v3 Score 7.5
References
- https://github.com/LianKee/SO-CVEs/blob/main/CVEs/CVE-2023-29726/CVE%20detail.md
- https://play.google.com/store/apps/details?id=com.cuiet.blockCalls
- https://www.call-blocker.info/
- https://github.com/LianKee/SO-CVEs/blob/main/CVEs/CVE-2023-29726/CVE%20detail.md
- https://play.google.com/store/apps/details?id=com.cuiet.blockCalls
- https://www.call-blocker.info/
Products affected by CVE-2023-29726
-
cpe:2.3:a:applika:call_blocker:6.6.3