CVE-2026-5454 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A vulnerability was found in GRID Organiser App up to 1.0.5 on Android. Impacted is an unknown function of the file file res/raw/app.json of the component co.gr…
Low CVSS: 1.9

CVE-2026-5454

A vulnerability was found in GRID Organiser App up to 1.0.5 on Android. Impacted is an unknown function of the file file res/raw/app.json of the component co.gridapp.organiser. Performing a manipulation of the argument SegmentWriteKey results in use of hard-coded cryptographic key
. The attack is only possible with local access. The exploit has been made public and could be used.
Vendor
-
Product
-
CWE
CWE-320
Yayın Tarihi
2026-04-03 05:16:23
Güncelleme
2026-04-03 16:10:23
Source Identifier
cna@vuldb.com
KEV Date Added
-

Kategoriler

CWE-320 LOW 2026

Referanslar

https://vuldb.com/submit/781759 https://vuldb.com/vuln/355042 https://vuldb.com/vuln/355042/cti https://www.notion.so/Segment-Write-Key-Exposure-Leading-to-Data-Injection-and-User-Profile-Manipulation-In-co-gridapp-org-3262de3f97fb801b9173c4851c7ad864?source=copy_link