A vulnerability has been found in Genspark AI Workspace App 2.8.4 on Android and classified as problematic . This vulnerability affects unknown code of the component ai.mainfunc.genspark . The manipulation leads to improper authorization in handler for custom url scheme. This vulnerability is referenced as CVE-2026-12190 . The attack can only be performed from a local environment. No exploit is available. The vendor was contacted early about this disclosure but did not respond in any way.