← Back to CVEs

CVE-2023-29727

CRITICAL

9.8

Description

The Call Blocker application 6.6.3 for Android allows unauthorized applications to use exposed components to delete data stored in its database that is related to user privacy settings and affects the implementation of the normal functionality of the application. An attacker can use this to cause an escalation of privilege attack.

CVE Details

CVSS v3.1 Score9.8

SeverityCRITICAL

CVSS VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack VectorNETWORK

ComplexityLOW

Privileges RequiredNONE

User InteractionNONE

Published5/30/2023

Last Modified1/13/2025

Sourcenvd

Honeypot Sightings0

Affected Products

applika:call_blocker

Weaknesses (CWE)

CWE-922

References

https://github.com/LianKee/SO-CVEs/blob/main/CVEs/CVE-2023-29727/CVE%20detail.md(cve@mitre.org)

https://play.google.com/store/apps/details?id=com.cuiet.blockCalls(cve@mitre.org)

https://www.call-blocker.info/(cve@mitre.org)

https://github.com/LianKee/SO-CVEs/blob/main/CVEs/CVE-2023-29727/CVE%20detail.md(af854a3a-2127-422b-91ae-364da2661108)

https://play.google.com/store/apps/details?id=com.cuiet.blockCalls(af854a3a-2127-422b-91ae-364da2661108)

https://www.call-blocker.info/(af854a3a-2127-422b-91ae-364da2661108)

IOC Correlations

No correlations recorded

This product uses data from the NVD API but is not endorsed or certified by the NVD.