There were additional claims about the potential of compromising CPDLC and ACARS. Given that neither of these is encrypted, the possibility is real. OTOH, the probability of a pilot verifying and executing a bogus clearance from either of these is MUCH less, as long as standard procedures are adhered to. If a rogue pilot decides to blindly accept a clearance without verification, that is another story entirely...