Vulnerability in Ooma Office Business Phone App
CVE-2025-10718
A vulnerability was found in Ooma Office Business Phone App up to 7.2.2 on Android. This affects an unknown part of the component com.ooma.office2. The manipulation results in improper export of android application components. The attack n…
EPSS: 0.001 (3.0th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 5.3 (Medium). Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L.
Affected products
- Ooma Office Business Phone App — versions 7.2.0, 7.2.1, 7.2.2
Weakness classification (CWE)
References
- cna@vuldb.com (vdb-entry)
- cna@vuldb.com (signature, permissions-required)
- cna@vuldb.com (third-party-advisory)
- cna@vuldb.com (exploit)
Frequently asked questions
- What is CVE-2025-10718?
- CVE-2025-10718 is a medium-severity vulnerability in Ooma Office Business Phone App, classified under CWE-926. CVSS score: 5.3/10. Published 2025-09-19.
- How severe is CVE-2025-10718?
- Medium severity. CVSS v3 base score is 5.3 out of 10.