CVE-2025-32887

Опубликовано: 01 мая 2025

Источник: nvd

CVSS3: 7.1

CVSS3: 6.5

EPSS Низкий

Описание

An issue was discovered on goTenna v1 devices with app 5.5.3 and firmware 0.25.5. A command channel includes the next hop. which can be intercepted and used to break frequency hopping.

Ссылки

https://github.com/Dollarhyde/goTenna_v1_and_Mesh_vulnerabilities
Third Party Advisory
https://gotenna.com
Product

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:gotenna:mesh_firmware:0.25.5:*:*:*:*:*:*:*

cpe:2.3:h:gotenna:mesh:-:*:*:*:*:*:*:*

Конфигурация 2

cpe:2.3:a:gotenna:gotenna:5.5.3:*:*:*:*:-:*:*

EPSS

Процентиль: 4%

0.0002

Низкий

7.1 High

CVSS3

6.5 Medium

CVSS3

Дефекты

CWE-319

Связанные уязвимости

GHSA-vv8p-v9q5-4pvf

CVSS3: 7.1

github

9 месяцев назад

An issue was discovered on goTenna v1 devices with app 5.5.3 and firmware 0.25.5. A command channel includes the next hop. which can be intercepted and used to break frequency hopping.

EPSS

Процентиль: 4%

0.0002

Низкий

7.1 High

CVSS3

6.5 Medium

CVSS3

Дефекты

CWE-319