PT-2026-26935 · Unknown · Omnipemf Neorhythm
Drewbug
+1
·
Published
2026-03-21
·
Updated
2026-03-22
·
CVE-2026-2756
CVSS v3.1
5.0
Medium
| Vector | AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L |
Name of the Vulnerable Software and Affected Versions
OmniPEMF NeoRhythm versions up to 20260308
Description
A security issue has been identified in OmniPEMF NeoRhythm related to missing authentication within the BLE Interface component. The attack requires high complexity and is considered difficult to exploit, and can only be initiated locally. The vendor was contacted regarding this issue but did not respond.
Recommendations
Versions up to 20260308 require a fix to address the missing authentication in the BLE Interface component. At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Improper Authentication
Missing Authentication
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Omnipemf Neorhythm