CVE-2026-5452

CVSS v3.1

3.3

Low

AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

A flaw has been found in UCC CampusConnect App up to 14.3.5 on Android. This vulnerability affects unknown code of the file campusconnect/BuildConfig.java of the component campusconnect.ucc. This manipulation causes use of hard-coded cryptographic key . The attack can only be executed locally. The exploit has been published and may be used.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-320CWE-321

Related Identifiers

CVE-2026-5452

Affected Products

Campusconnect App

CVE-2026-5452

Weakness Enumeration

Related Identifiers

Affected Products

References · 5