CVE-2025-43976

Sažetak

The com.enflick.android.tn2ndLine application through 24.17.1.0 for Android enables any installed application (with no permissions) to place phone calls without user interaction by sending a crafted intent via the com.enflick.android.TextNow.activities.DialerActivity component.

Reference

https://github.com/actuator/com.enflick.android.tn2ndLine
https://github.com/actuator/com.enflick.android.tn2ndLine/blob/main/CVE-2025-43976
https://play.google.com/store/apps/details?id=com.enflick.android.tn2ndLine

CVSS

Base:	0.0
Impact:	None
Exploitability:	None

Pristup

Vektor	Složenost	Autentikacija
None	None	None

Impact

Povjerljivost	Cjelovitost	Dostupnost
None	None	None

CVSS vektor

None

Zadnje važnije ažuriranje

21-07-2025 - 15:15

Objavljeno

21-07-2025 - 15:15