← Back to home
ICSMA-26-148-01  ·  Published 2026-05-28  ·  View on CISA ICS-CERT ↗

Fourth Frontier Frontier X Mobile Application, Frontier X2

CVSS 8.8 HIGH

Risk Summary

Successful exploitation of this vulnerability could allow an attacker to read and write arbitrary handle values and change clinical readings, which could result in taking control of the device and lead to patient harm.

CVEs (1)

Remediations

  • Fourth Frontier is aware of the vulnerability and is working on a fix. Users are encouraged to reach out to Fourth Frontier directly for assistance. https://fourthfrontier.com/pages/contact-usl.
  • Frontier X/X2 devices can connect to only one app at a time; users should first connect the Frontier X/X2 device using the Frontier X app and then start the activity.

Affected Vendors

Fourth Frontier

Affected Products (3)

Fourth Frontier · Frontier X Android application <v15.0.0
Fourth Frontier · Frontier X IOS application <v25.0.0
Fourth Frontier · Frontier X2 vers:all/*

Affected Sectors

Healthcare and Public Health

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more