Loading market data...
← Back to CVE feed

CVE-2026-9222

HIGH CVSS 8.1 View on NVD ↗

Description

Setracker2 Android Companion App com.tgelec.setracker versions 3.1.5 and prior only require the password hash when authenticating with backend services from the client. This could allow an attacker, who knows the hash, to authenticate and gain full access.

CVSS Vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Published: Jun 26, 2026 00:16 UTC Modified: Jun 26, 2026 20:08 UTC