Phones
This hub aggregates every CVE we track for Phones, a product in the mobile apps space. Use it to gauge the current risk picture and drill into individual advisories.
20
CVEs tracked
0
Critical
1
High
0
In CISA KEV
Severity distribution
MEDIUM14LOW5HIGH1
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
1
0
2024-072026-06
Latest CVEs
The 15 most recently published vulnerabilities affecting Phones.
- CVE-2026-5804An improper authentication vulnerability was discovered in the Motorola Factory Test component (com.motorola.motocit). The application contained a reference to a writable file descriptor in ext...8.4
- CVE-2024-3480An Implicit intent vulnerability was reported in the Motorola framework that could allow an attacker to read telephony-related data.2.8
- CVE-2024-3479 An improper export vulnerability was reported in the Motorola Enterprise MotoDpms Provider (com.motorola.server.enterprise.MotoDpmsProvider) that could allow a local attacker to read local data.2.8
- CVE-2024-3109 A hard-coded AES key vulnerability was reported in the Motorola GuideMe application, along with a lack of URI sanitation, could allow for a local attacker to read arbitrary files. 6.3
- CVE-2024-3108 An implicit intent vulnerability was reported for Motorola’s Time Weather Widget application that could allow a local application to acquire the location of the device without authorization. 5.5
- CVE-2023-41830 An improper absolute path traversal vulnerability was reported for the Ready For application allowing a local application access to files without authorization. 6.5
- CVE-2023-41828 An implicit intent export vulnerability was reported in the Motorola Phone application, that could allow unauthorized access to a non-exported content provider. 4.4
- CVE-2023-41826A PendingIntent hijacking vulnerability in Motorola Device Help (Genie) application that could allow local attackers to access files or interact with non-exported software components without permis...5.1
- CVE-2023-41825 A path traversal vulnerability was reported in the Motorola Ready For application that could allow a local attacker to access local files. 2.8
- CVE-2023-41824 An implicit intent vulnerability was reported in the Motorola Phone Calls application that could allow a local attacker to read the calling phone number and calling data. 2.8
- CVE-2023-41823 An improper export vulnerability was reported in the Motorola Phone Extension application, that could allow a local attacker to execute unauthorized Activities. 4.4
- CVE-2023-41822 An improper export vulnerability was reported in the Motorola Interface Test Tool application that could allow a malicious local application to execute OS commands. 4.8
- CVE-2023-41821 A an improper export vulnerability was reported in the Motorola Setup application that could allow a local attacker to read sensitive user information. 5.0
- CVE-2023-41820 An implicit intent vulnerability was reported in the Motorola Ready For application that could allow a local attacker to read information about connected Bluetooth audio devices. 5.0
- CVE-2023-41819 A PendingIntent hijacking vulnerability was reported in the Motorola Face Unlock application that could allow a local attacker to access unauthorized content providers. 6.1
Product normalization is registry-driven with AI assist and human review. How it works