CVE-2026-4218 in myAEDES Appinfo

Summary

by MITRE • 03/16/2026

A vulnerability was detected in myAEDES App up to 1.18.4 on Android. Affected is an unknown function of the file aedes/me/beta/utils/EngageBayUtils.java of the component aedes.me.beta. Performing a manipulation of the argument AUTH_KEY results in information disclosure. The attack is only possible with local access. The attack's complexity is rated as high. The exploitability is told to be difficult. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsible

VulDB

Disclosure

03/16/2026

Moderation

accepted

Entry

VDB-351142

CPE

ready

CWE

CWE-200 (confirmed)

Exploit

Download

CVSS

2.5 (VulDB)

EPSS

0.00005

KEV

Activities

very low

Sector

Police, Homeoffice

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-4218
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-4218
CVE Details	https://www.cvedetails.com/cve/CVE-2026-4218/

◂ Previous Overview Next ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!