Опубликовано: 26 сент. 2024
Источник: github
Github: Не прошло ревью
CVSS4: 7.6
CVSS3: 5.4
Описание
The goTenna Pro series does not authenticate public keys which allows an unauthenticated attacker to intercept and manipulate messages.
The goTenna Pro series does not authenticate public keys which allows an unauthenticated attacker to intercept and manipulate messages.
EPSS
Процентиль: 21%
0.00068
Низкий
7.6 High
CVSS4
5.4 Medium
CVSS3
CVE ID
Дефекты
CWE-287
CWE-923
Связанные уязвимости
CVSS3: 8.1
nvd
больше 1 года назад
The goTenna Pro App does not authenticate public keys which allows an unauthenticated attacker to manipulate messages. It is advised to update your app to the current release for enhanced encryption protocols.
EPSS
Процентиль: 21%
0.00068
Низкий
7.6 High
CVSS4
5.4 Medium
CVSS3
CVE ID
Дефекты
CWE-287
CWE-923