CVE-2025-7889 | CallApp Caller ID App up to 2.0.4 on Android caller.id.phone.number.block AndroidManifest.xml improper export of android application components

Inserito da Angelo Barbosa | Lug 19, 2025 | CVE

A vulnerability was found in CallApp Caller ID App up to 2.0.4 on Android. It has been classified as problematic. Affected is an unknown function of the file AndroidManifest.xml of the component caller.id.phone.number.block. The manipulation leads to improper export of android application components.

This vulnerability is traded as CVE-2025-7889. It is possible to launch the attack on the local host. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2025-7889 | CallApp Caller ID App up to 2.0.4 on Android caller.id.phone.number.block AndroidManifest.xml improper export of android application components

Post correlati

CVE-2024-0360 | PHPGurukul Hospital Management System 1.0 edit-doctor-specialization.php doctorspecilization sql injection

CVE-2024-6356 | GitLab Enterprise Edition up to 17.0.5/17.1.3/17.2.1 Security Policy Bot incorrect user management (Issue 469108)

CVE-2024-30280 | Adobe Acrobat Pro DC AcroForm Annotation out-of-bounds

CVE-2024-45203 | istyle cosme App on iOS/Android Custom URL Scheme improper authorization