CVE-2026-5768 | The Frontier X2 device allows unauthenticated BLE read/write… | CVSS 8.8 HIGH

Description

The Frontier X2 device allows unauthenticated BLE read/write access to critical GATT characteristics without enforcing pairing authentication or authorization. This allows attackers within BLE range to perform unauthorized control of device functions, including starting/stopping activities, triggering vibrations, causing denial-of-service conditions, and fuzzing characteristic values to induce unexpected behavior. Additionally, the Frontier X mobile application lacks proper BLE device authentication, allowing attackers to impersonate a legitimate Frontier X2 device and connect to the application. By cloning BLE advertisements and exposing expected GATT characteristics, attackers can manipulate activity states and inject fabricated health telemetry such as breathing rate, heart rate, strain, and other health-related data into the mobile application.

Metadata

CVE ID: CVE-2026-5768
State: PUBLISHED
Assigner: icscert
Reserved: 2026-04-07 20:28 UTC
Published: 2026-05-29 16:58 UTC
Last updated: 2026-05-29 19:31 UTC
Primary CWE: CWE-306
CWE-306
Vendor / Product: Fourth Frontier / Frontier X Android application
Sources: cve.org · NVD

Severity & Metrics

8.8 HIGH CVSS 3.1

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

SSVC — CISA Coordinator

Exploitation: none
Automatable: no
Tech. Impact: total

Affected products (3)

Vendor	Product	Platform	Versions
Fourth Frontier	Frontier X Android application	—	0 < 15.0.0
Fourth Frontier	Frontier X IOS application	—	0 < 25.0.0
Fourth Frontier	Frontier X2	—	All versions

Weakness (CWE)

CWE	Source	Description
CWE-306	cna	CWE-306

CVSS scores (1)

Score	Severity	Version	Source	Vector
8.8	HIGH	3.1	cna	CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References (3)