The com.full.dialer.top.secure.encrypted application through 1.0.1 for Android enables any installed application (with no permissions) to place phone calls without user interaction by sending a. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.
Google
Authentication Bypass
Full Dialer
NVD
GitHub
CVSS 3.1
3.3
EPSS
0.3%