CVE-2026-47782 LOW

CVE-2026-47782

Vendor Siber Systems, Inc.
Product Android App "RoboForm Password Manager"
Weakness CWE-357
Published May 20, 2026
Last update May 21, 2026

CVSS base score

3.3/10
Attack vector Local
Attack complexity Low
Privileges required None
User interaction Required
Confidentiality None
Integrity Low

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

What the vulnerability does

01Description

Android App "RoboForm Password Manager" provided by Siber Systems, Inc. handles Android intents without sufficient URL validation, user confirmation nor notification. If a URL to some malicious web page is given through an intent, RoboForm may silently download files without user confirmation nor notification.

Key dates

02Disclosure timeline

May 20, 2026 CVE published
May 21, 2026 Record updated