CVE-2026-5454

CVSS v2.0

1.7

Low

AV:L/AC:L/Au:S/C:P/I:N/A:N

A vulnerability was found in GRID Organiser App up to 1.0.5 on Android. Impacted is an unknown function of the file file res/raw/app.json of the component co.gridapp.organiser. Performing a manipulation of the argument SegmentWriteKey results in use of hard-coded cryptographic key . The attack is only possible with local access. The exploit has been made public and could be used.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-320CWE-321

Related Identifiers

CVE-2026-5454

Affected Products

Organiser App

CVE-2026-5454

Weakness Enumeration

Related Identifiers

Affected Products

References · 5