Andr.Ess

**Name of the Vulnerable Software and Affected Versions** Recents versions prior to SMR Apr-2026 Release 1 **Description** Improper check for exceptional conditions in Recents allows a physical attacker to bypass App Pinning. **Recommendations** Update to SMR Apr-2026 Release 1.

**Name of the Vulnerable Software and Affected Versions** QNAP Authenticator versions prior to 1.3.1.1227 **Description** An improper authentication issue exists in QNAP Authenticator. An attacker with physical access can exploit this to compromise system security. **Recommendations** Update to QNAP Authenticator version 1.3.1.1227 or later.

**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 26 iPadOS versions prior to 26 **Description** Keyboard suggestions may display sensitive information on the lock screen. This issue was addressed by restricting options offered on a locked device. **Recommendations** Update to iOS version 26 or later. Update to iPadOS version 26 or later.

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 100.0.4896.60 **Description** The issue is related to an inappropriate implementation in the Virtual Keyboard component of Google Chrome, specifically on Chrome OS. This could allow a local attacker, with physical access to the device, to bypass navigation restrictions. The exploitation of this issue may impact the confidentiality, integrity, and availability of protected information through a specially crafted web page. **Recommendations** For versions prior to 100.0.4896.60, update to version 100.0.4896.60 or later to resolve the issue. As a temporary workaround, consider restricting physical access to devices to minimize the risk of exploitation.