FortiTokenAndroid 5.26.2 Improper export of app components (Android)
CVE-2026-44279 Published on May 12, 2026
A improper export of android application components vulnerability in Fortinet FortiTokenAndroid 6.2 all versions, FortiTokenAndroid 6.1 all versions, FortiTokenAndroid 5.2 all versions may allow attacker to improper access control via <insert attack vector here>
Vulnerability Analysis
CVE-2026-44279 can be exploited with local system access, and requires small amount of user privileges. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to have a high impact on confidentiality, with no impact on integrity and availability.
Weakness Type
Improper Export of Android Application Components
The Android application exports a component for use by other applications, but does not properly restrict which applications can launch the component or access the data it contains.
Products Associated with CVE-2026-44279
Want to know whenever a new CVE is published for Fortinet Fortitokenandroid? stack.watch will email you.
Affected Versions
Fortinet FortiTokenAndroid:- Version 6.2.0 is affected.
- Version 6.1.0 is affected.
- Version 5.2.0, <= 5.2.2 is affected.