CVE-2025-43977 Information
Jul 22, 2025
cve
Description
The com.skt.prod.dialer application through 12.5.0 for Android enables any installed application (with no permissions) to place phone calls without user interaction by sending a crafted intent via the com.skt.prod.dialer.activities.outgoingcall.OutgoingCallInternalBroadcaster component.
Reference
https://github.com/actuator/com.skt.prod.dialer https://github.com/actuator/com.skt.prod.dialer/blob/main/CVE-2025-43977 https://play.google.com/store/apps/details?id=com.skt.prod.dialer
Related CNNVD
CNNVD-202507-2650 (Published: 2025-07-21)
Share on: