Описание
An issue was discovered on goTenna v1 devices with app 5.5.3 and firmware 0.25.5. All packets sent over RF are also sent over UART with USB Shell, allowing someone with local access to gain information about the protocol and intercept sensitive data.
Ссылки
- Third Party Advisory
- Product
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:gotenna:mesh_firmware:0.25.5:*:*:*:*:*:*:*
cpe:2.3:h:gotenna:mesh:-:*:*:*:*:*:*:*
Конфигурация 2
cpe:2.3:a:gotenna:gotenna:5.5.3:*:*:*:*:-:*:*
EPSS
Процентиль: 7%
0.00027
Низкий
4 Medium
CVSS3
5.5 Medium
CVSS3
Дефекты
CWE-923
Связанные уязвимости
CVSS3: 4
github
9 месяцев назад
An issue was discovered on goTenna v1 devices with app 5.5.3 and firmware 0.25.5. All packets sent over RF are also sent over UART with USB Shell, allowing someone with local access to gain information about the protocol and intercept sensitive data.
EPSS
Процентиль: 7%
0.00027
Низкий
4 Medium
CVSS3
5.5 Medium
CVSS3
Дефекты
CWE-923