| Titel | Freedom Factory dGEN1 phone 1 Broken Authorization |
|---|
| Beschreibung | The com.dgen.alarm application on the Freedom Factory dGEN1 phone contains a broken authorization vulnerability in an exported BroadcastReceiver (StopReceiver). The receiver allows any local application to silently cancel active alarms, dismiss alarm notifications, and remove scheduled alarms without user interaction.
As a result, a malicious application can disable alarms entirely, potentially causing users to miss critical alerts or reminders. |
|---|
| Quelle | ⚠️ https://gist.github.com/Lytes/2bd9cb3faf89b114754f00292beabb38 |
|---|
| Benutzer | Anonymous User |
|---|
| Einreichung | 21.02.2026 06:00 (vor 2 Monaten) |
|---|
| Moderieren | 06.03.2026 21:53 (14 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 349557 [Freedom Factory dGEN1 bis 20260221 com.dgen.alarm AlarmService erweiterte Rechte] |
|---|
| Punkte | 20 |
|---|