CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-44126

The vulnerability is that the Call management ("com.android.server.telecom") app patched by LG sends a lot of LG-owned implicit broadcasts that disclose sensitive data to all third-party apps installed on the same device. Those intents include data such as call states, durations, called numbers, contacts info, etc.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 13.9%

CVSS Severity

CVSS v3 Score 3.6

References

Products affected by CVE-2023-44126

Lg » V60 Thin Q 5g » Version: N/A

cpe:2.3:h:lg:v60_thin_q_5g:-
Google » Android » Version: 10.0

cpe:2.3:o:google:android:10.0
Google » Android » Version: 11.0

cpe:2.3:o:google:android:11.0
Google » Android » Version: 12.0

cpe:2.3:o:google:android:12.0
Google » Android » Version: 12.0l

cpe:2.3:o:google:android:12.0l
Google » Android » Version: 12.1

cpe:2.3:o:google:android:12.1
Google » Android » Version: 12l

cpe:2.3:o:google:android:12l
Google » Android » Version: 13.0

cpe:2.3:o:google:android:13.0
Google » Android » Version: 8.0

cpe:2.3:o:google:android:8.0
Google » Android » Version: 8.1

cpe:2.3:o:google:android:8.1
Google » Android » Version: 9.0

cpe:2.3:o:google:android:9.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-44126

Products

Pricing

Contact Us