Ashish Kumar

**Name of the Vulnerable Software and Affected Versions** No specific software or versions are mentioned in the provided descriptions. **Description** The issue is related to a missing permission check in multiple files, allowing the import of a contact from another user. This could lead to local escalation of privilege without requiring additional execution privileges or user interaction. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** No specific software or versions are mentioned in the provided descriptions. **Description** The issue is related to a confused deputy, allowing the import of contacts belonging to other users in multiple locations. This could lead to local information disclosure without requiring additional execution privileges. User interaction is not necessary for exploitation. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.