PT-2018-4372 · Jolla · Sailfish Os

Nikolas Sotiriu

Publicado

2018-01-12

Atualizado

2018-02-01

CVE-2015-3888

CVSS v2.0

5.0

Média

Vetor

AV:N/AC:L/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions Jolla Sailfish OS versions prior to 1.1.2.16

Description The issue allows remote attackers to spoof phone numbers and trigger calls to arbitrary numbers via spaces in a tel: URL.

Recommendations For versions prior to 1.1.2.16, update to version 1.1.2.16 or later to resolve the issue.

Exploit

Correção

Improper Access Control

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

CVE-2015-3888

Sailfish Os