CVE-2026-4216

Name of the Vulnerable Software and Affected Versions i-SENS SmartLog App versions up to 2.6.8

Description A weakness exists in the i-SENS SmartLog App on Android, affecting an unknown function within the air.SmartLog.android component. This issue results in the presence of hard-coded credentials. The attack is limited to local execution. The exploit is publicly available. The affected function is related to a developer mode used for Bluetooth pairing between a blood glucose meter and the SmartLog application, intended for device integration and testing.

Recommendations Versions up to 2.6.8 should be updated when a future application update is released that either removes the developer mode function or restricts access to it.