CVE ID :CVE-2026-9220 Published : June 25, 2026, 11:13 p.m. | 1 hour, 57 minutes ago Description :Setracker2 Android Companion App com.tgelec.setracker versions 3.1.5 and prior encrypts requests between the watch and its backend with static hardcoded AES keys and initialization vectors. This...

#Sicherheitslücke #Android

Original-Artikel öffnen Zurück zur Übersicht

ARTICLEVIEW

CVE-2026-9220 - Setracker2 Children's Smartwatch Ecosystem Use of hard-coded cryptographic key

VERWANDTEARTIKEL

CVE-2026-9222 - Setracker2 Children's Smartwatch Ecosystem Use of password hash instead of password for authentication

CVE-2026-9221 - Setracker2 Children's Smartwatch Ecosystem Use of a Broken or Risky Cryptographic Algorithm

CVE-2026-9219 - Setracker2 Children's Smartwatch Ecosystem Generation of Predictable Numbers or Identifiers

CVE-2026-22879 - VTK vtk-dicom heap-based buffer overflow

CVE-2025-71340 - picklescan - Remote Code Execution via idlelib.pyshell.ModifiedInterpreter.runcode

CVE-2025-71338 - Flowise - Arbitrary File Write to Remote Code Execution via document-store API