VYPR
High severity7.5NVD Advisory· Published Oct 5, 2019· Updated Jun 17, 2026

CVE-2019-17191

CVE-2019-17191

Description

The Signal Private Messenger application before 4.47.7 for Android allows a caller to force a call to be answered, without callee user interaction, via a connect message. The existence of the call is noticeable to the callee; however, the audio channel may be open before the callee can block eavesdropping.

Affected products

2
  • Signal/Private Messenger applicationdescription
  • Signal/Signalllm-fuzzy
    Range: <4.47.7

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.