Vulnerability Details CVE-2023-44127
he vulnerability is that the Call management ("com.android.server.telecom") app patched by LG launches implicit intents that disclose sensitive data to all third-party apps installed on the same device. Those intents include data such as contact details and phone numbers.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 13.9%
CVSS Severity
CVSS v3 Score 3.6
References
Products affected by CVE-2023-44127
-
cpe:2.3:h:lg:v60_thin_q_5g:-
-
cpe:2.3:o:google:android:10.0
-
cpe:2.3:o:google:android:11.0
-
cpe:2.3:o:google:android:12.0
-
cpe:2.3:o:google:android:12.0l
-
cpe:2.3:o:google:android:12.1
-
cpe:2.3:o:google:android:12l
-
cpe:2.3:o:google:android:13.0
-
cpe:2.3:o:google:android:8.0
-
cpe:2.3:o:google:android:8.1
-
cpe:2.3:o:google:android:9.0