The Call Blocker application 6.6.3 for Android incorrectly opens a key component that an attacker can use to inject large amounts of dirty data into the application's database. When the application starts, it loads the data from the database into memory. Once the attacker injects too much data, the application triggers an OOM error and crashes, resulting in a persistent denial of service.
oryginał ENCVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HApplika Call Blocker
APPApplika6.6.3
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
DoS
Powiązane podatności
CVE-2023-29727CRITICAL9.8ten sam produkt
The Call Blocker application 6.6.3 for Android allows unauthorized applications to use exposed components to d...
CVE-2023-29728CRITICAL9.8ten sam produkt
The Call Blocker application 6.6.3 for Android allows attackers to tamper with feature-related data, resulting...