A vulnerability, which was classified as problematic, has been found in actualbudget actual up to 26.5.x. This issue affects some unknown processing of the component Secret Store. This manipulation causes improper synchronization.
The identification of this vulnerability is CVE-2026-46700. It is possible to initiate the attack remotely. There is no exploit available.