CVE-2024-53605

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Dec 2, 2024
Updated: Dec 4, 2024
CWE ID 862

Summary

CVE-2024-53605 is a newly disclosed vulnerability affecting Handcent NextSMS version 10.9.9.7. This issue arises from a misconfiguration in the component content://com.handcent.messaging.provider.MessageProvider/, leading to incorrect access control. Attackers can exploit this vulnerability to gain unauthorized access to sensitive data, potentially compromising user privacy. The extent of the impact is currently unknown, but users are advised to update to the latest version of Handcent NextSMS to mitigate the risk. Failure to address this vulnerability could result in data breaches and other malicious activities.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share