PT-2026-29986 · Unknown · Só Vantagem Pra Investir App
Fxizenta
·
Published
2026-04-03
·
Updated
2026-04-03
·
CVE-2026-5453
CVSS v3.1
3.3
Low
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Rico só vantagem pra investir App versions up to 4.58.32.12421
Description
A security issue exists in Rico só vantagem pra investir App on Android, affecting the processing of the file
br/com/rico/mobile/di/SegmentSettingsModule.java within the br.com.rico.mobile component. Manipulation of the SEGMENT WRITE KEY argument results in the use of a hard-coded cryptographic key. The attack can only be performed locally and the exploit has been publicly disclosed. The vendor was contacted but did not respond.Recommendations
Update Rico só vantagem pra investir App to a version newer than 4.58.32.12421.
Exploit
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Só Vantagem Pra Investir App