What is GHSA-frf3-pwqj-2qf5?

GHSA-frf3-pwqj-2qf5 is a security advisory published by GitHub Security Advisories with Medium severity. A user with physical access to a smartphone can bypass authentication mechanism of Kidsview...

Which CVE IDs does GHSA-frf3-pwqj-2qf5 cover?

GHSA-frf3-pwqj-2qf5 covers the following CVE IDs: CVE-2026-8990. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

GHSA-frf3-pwqj-2qf5Medium

A user with physical access to a smartphone can bypass authentication mechanism of Kidsview...

Vendor

GitHub Security Advisories

Published

May 28, 2026

Last Modified

May 28, 2026

🔗 CVE IDs covered (1)

CVE-2026-8990 →

📋 Description

A user with physical access to a smartphone can bypass authentication mechanism of Kidsview mobile application and grant himself full access to the device owner's account by interacting with application's push notification.

This issue was fixed in version 4.4.3

🔗 References (4)

https://nvd.nist.gov/vuln/detail/CVE-2026-8990
https://cert.pl/posts/2026/05/CVE-2026-8990
https://kidsview.pl
https://github.com/advisories/GHSA-frf3-pwqj-2qf5