ICU Scandinavia Boomerang
- < 2.4.18.029
A missing authentication vulnerability has been identified in ICU Scandinavia Boomerang, affecting all versions prior to 2.4.18.029. The flaw resides in the device receiver endpoints, where the absence of authentication allows unauthenticated remote attackers to access full facility configurations and write unauthorized data to the sensor database.
Exploitation of this vulnerability could lead to unauthorized access to sensitive facility configuration data and the ability to inject unauthorized information into the sensor database.
Users can upgrade to version 2.4.18.029 or later to address this vulnerability.
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.