CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added 2026/04/03 4:30 a.m.•19 views

CVE-2026-5453 Rico só vantagem pra investir App br.com.rico.mobile SegmentSettingsModule.java hard-coded key

A vulnerability has been found in Rico só vantagem pra investir App up to 4.58.32.12421 on Android. This issue affects some unknown processing of the file br/com/rico/mobile/di/SegmentSettingsModule.java of the component br.com.rico.mobile. Such manipulation of the argument SEGMENTWRITEKEY leads ...

4.8CVSS0.00141EPSS

ATTACKERKB•added 2026/04/03 4:30 a.m.•2 views

CVE-2026-5453

Exploits0References4Affected Software1

Vulnrichment•added 2026/04/03 4:30 a.m.•5 views

CVE-2026-5453 Rico só vantagem pra investir App br.com.rico.mobile SegmentSettingsModule.java hard-coded key

CVE•added 2026/04/03 4:30 a.m.•8 views

CVE-2026-5453

Summary: CVE-2026-5453 affects the Android app “Rico só vantagem pra investir” up to version 4.58.32.12421. The vulnerability concerns the component br.com.rico.mobile SegmentSettingsModule.java, where manipulation of the argument SEGMENT_WRITE_KEY leads to use of a hard-coded cryptographic key. ...

NVD•added 2026/04/03 4:17 a.m.•7 views

CVE-2026-5452

A flaw has been found in UCC CampusConnect App up to 14.3.5 on Android. This vulnerability affects unknown code of the file campusconnect/BuildConfig.java of the component campusconnect.ucc. This manipulation causes use of hard-coded cryptographic key . The attack can only be executed locally. Th...

4.8CVSS0.00144EPSS

Cvelist•added 2026/04/03 2:45 a.m.•17 views

CVE-2026-5452 UCC CampusConnect App campusconnect.ucc BuildConfig.java hard-coded key

4.8CVSS0.00144EPSS

ATTACKERKB•added 2026/04/03 2:45 a.m.•1 views

CVE-2026-5452

Exploits0References4Affected Software1

Positive Technologies•added 2026/04/03 12:0 a.m.•5 views

PT-2026-29993

A weakness has been identified in Noelse Individuals & Pro App up to 2.1.7 on Android. This impacts an unknown function of the file com/reactnative/antelop/BuildConfig.java of the component com.afone.noelse. This manipulation of the argument SEGMENT WRITE KEY causes use of hard-coded cryptographi...

Positive Technologies•added 2026/04/03 12:0 a.m.•2 views

PT-2026-29976

Positive Technologies•added 2026/04/03 12:0 a.m.•2 views

PT-2026-29989

A vulnerability was determined in Dialogue App up to 4.3.2 on Android. The affected element is an unknown function of the file file res/raw/config.json of the component ca.diagram.dialogue. Executing a manipulation of the argument SEGMENT WRITE KEY can lead to use of hard-coded cryptographic key...

4.8CVSS5.4AI score0.00106EPSS

Positive Technologies•added 2026/04/03 12:0 a.m.•5 views

PT-2026-29986

Positive Technologies•added 2026/04/03 12:0 a.m.•3 views

PT-2026-29995

A vulnerability was identified in Wahoo Fitness SYSTM App up to 7.2.1 on Android. Impacted is an unknown function of the file com/WahooFitness/SYSTM/BuildConfig.java of the component com.WahooFitness.SYSTM. Such manipulation of the argument SEGMENT WRITE KEY leads to use of hard-coded cryptograph...

4.8CVSS5.6AI score0.00156EPSS

Positive Technologies•added 2026/04/03 12:0 a.m.•2 views

PT-2026-33153

Name of the Vulnerable Software and Affected Versions Google Chrome on Android versions prior to 147.0.7727.101 Description A use after free issue in Permissions allows a remote attacker to execute arbitrary code via a crafted HTML page if a user is convinced to perform specific UI gestures. Use...

10CVSS6.2AI score0.00372EPSS

Exploits0References40

CNNVD•added 2026/04/03 12:0 a.m.•16 views

PropertyGuru AgentNet Singapore App 安全漏洞

The PropertyGuru AgentNet Singapore App is a mobile application used by PropertyGuru in Singapore as an real estate agency. The PropertyGuru AgentNet Singapore App versions prior to 23.7.10 contained a security vulnerability, which was caused by the use of hardcoded encryption keys for parameters...

4.8CVSS5.8AI score0.00144EPSS

Positive Technologies•added 2026/04/03 12:0 a.m.•5 views

PT-2026-29990

A vulnerability was identified in Align Technology My Invisalign App 3.12.4 on Android. The impacted element is an unknown function of the file com/aligntech/myinvisalign/BuildConfig.java of the component com.aligntech.myinvisalign.emea. The manipulation of the argument CDAACCESS TOKEN leads to u...

4.8CVSS5.5AI score0.00105EPSS

Positive Technologies•added 2026/04/03 12:0 a.m.•4 views

PT-2026-29987

A vulnerability was found in GRID Organiser App up to 1.0.5 on Android. Impacted is an unknown function of the file file res/raw/app.json of the component co.gridapp.organiser. Performing a manipulation of the argument SegmentWriteKey results in use of hard-coded cryptographic key . The attack is...

4.8CVSS5.4AI score0.00141EPSS

Positive Technologies•added 2026/04/03 12:0 a.m.•3 views

PT-2026-30194

A vulnerability was detected in Investory Toy Planet Trouble App up to 1.5.5 on Android. Impacted is an unknown function of the file assets/google-services-desktop.json of the component app.investory.toyfactory. The manipulation of the argument current key results in use of hard-coded cryptograph...

4.8CVSS5.5AI score0.00141EPSS

Positive Technologies•added 2026/04/03 12:0 a.m.•2 views

PT-2026-29992

A security flaw has been discovered in PropertyGuru AgentNet Singapore App up to 23.7.10 on Android. This affects an unknown function of the file com/allproperty/android/agentnet/BuildConfig.java of the component com.allproperty.android.agentnet. The manipulation of the argument SEGMENT ANDROID...