CVE-2026-2671

Name of the Vulnerable Software and Affected Versions Mendi Neurofeedback Headset version V4

Description A vulnerability exists in the Bluetooth Low Energy Handler component of the Mendi Neurofeedback Headset V4, allowing for the cleartext transmission of sensitive information. The attack requires manipulation and can only be performed from the local network. Exploitation is considered difficult. The vendor was contacted regarding this issue but did not respond.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.