CVE-2026-5804HIGH 8.4EPSS p5.8%

CVE-2026-5804CVE-2026-5804

Description

An improper authentication vulnerability was discovered in the Motorola Factory Test component (com.motorola.motocit). The application contained a reference to a writable file descriptor in external storage which could be used by third party apps running on the device to open a TCP server, exposing sensitive permissions and data. This could allow a local attacker to bypass permission checks and access protected device settings.

Scoring

CVSS 3.18.4 (HIGH)
VectorCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N
EPSS0.16% probability of exploitation · percentile 5.8% · 2026-06-19T12:03:05Z
Published2026-05-19
Last modified2026-05-19

References

  1. https://en-us.support.motorola.com/app/answers/detail/a_id/192534

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-20990
CVE
CVE-2025-10653
CVE
CVE-2026-49195
CVE
CVE-2026-0050
CVE
CVE-2026-0035
CVE
CVE-2026-21027
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.