Motorola Framework Vulnerability Could Allow Telephony Data Reading
CVE-2024-3480

2.8LOW

Key Information:

Vendor

Motorola

Status
Phones
Vendor
CVE Published:
3 May 2024

What is CVE-2024-3480?

An Implicit intent vulnerability was reported in the Motorola framework that could allow an attacker to read telephony-related data.

Affected Version(s)

Phones < 2023-09-01

References

https://en-us.support.motorola.com/app/answers/detail/a_i...

CVSS V3.1

Score:
2.8
Severity:
LOW
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

Credit

Sergey Toshin and Illia Khorolskyi of Oversecured (ovesecured.com)
.