In messaging service, there is a missing permission check. This could lead to local denial of service in contacts service with no additional execution privileges needed.
Related posts