216.73.217.22

CVE-2026-8990

· Published 28/05/2026 14:16 · Modified 28/05/2026 18:00

Labels: CVE-2026-8990 2026-05-28CVE-2026-8990CWE-288[email protected]

Essential information

Published
28/05/2026 14:16
Modified
28/05/2026 18:00
Author
Creator
CVSS
5.3 MEDIUM (v3) 5.3 MEDIUM (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

A user with physical access to a smartphone can bypass authentication mechanism of Kidsview mobile application and grant himself full access to the device owner's account by interacting with application's push notification. This issue was fixed in version 4.4.3

NVD status

Status
Deferred — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
* / kidsview cpe:2.3:a:*:kidsview:4.4.3:*:*:*:*:*:*:*

References