PT-2026-26935 · Unknown · Omnipemf Neorhythm

Drewbug

Publicado

2026-03-21

Atualizado

2026-03-22

CVE-2026-2756

CVSS v3.1

5.0

Média

Vetor

AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

Name of the Vulnerable Software and Affected Versions OmniPEMF NeoRhythm versions up to 20260308

Description A security issue has been identified in OmniPEMF NeoRhythm related to missing authentication within the BLE Interface component. The attack requires high complexity and is considered difficult to exploit, and can only be initiated locally. The vendor was contacted regarding this issue but did not respond.

Recommendations Versions up to 20260308 require a fix to address the missing authentication in the BLE Interface component. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Improper Authentication

Missing Authentication

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-287CWE-306

Identificadores relacionados

CVE-2026-2756

Produtos afetados

Omnipemf Neorhythm

PT-2026-26935 · Unknown · Omnipemf Neorhythm

CVE-2026-2756

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 8