Lucene search
+L

35 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-13280

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00137EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-13274

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00115EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-13277

Malicious code in bioql PyPI...

8.8CVSS6.6AI score0.0016EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/03 1:21 a.m.16 views

CVE-2025-32890

An issue was discovered on goTenna Mesh devices with app 5.5.3 and firmware 1.1.12. It uses a custom implementation of encryption without any additional integrity checking mechanisms. This leaves messages malleable to an attacker that can access the message...

6.5CVSS7.3AI score0.00115EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/03 1:19 a.m.13 views

CVE-2025-32883

An issue was discovered on goTenna Mesh devices with app 5.5.3 and firmware 1.1.12. The app there makes it possible to inject any custom message into existing mesh networks with any GID and Callsign via a software defined radio. This can be exploited if the device is being used in an unencrypted...

6.5CVSS7.2AI score
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/03 1:18 a.m.12 views

CVE-2025-32884

An issue was discovered on goTenna Mesh devices with app 5.5.3 and firmware 1.1.12. By default, a GID is the user's phone number unless they specifically opt out. A phone number is very sensitive information because it can be tied back to individuals. The app does not encrypt the GID in messages...

6.5CVSS6.9AI score0.00137EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/03 1:12 a.m.6 views

CVE-2025-32888

An issue was discovered on goTenna Mesh devices with app 5.5.3 and firmware 1.1.12. The verification token used for sending SMS through a goTenna server is hardcoded in the app...

8.8CVSS7.5AI score0.0016EPSS
Exploits0References1
OSV
OSV
added 2025/05/01 6:15 p.m.6 views

CVE-2025-32890

An issue was discovered on goTenna Mesh devices with app 5.5.3 and firmware 1.1.12. It uses a custom implementation of encryption without any additional integrity checking mechanisms. This leaves messages malleable to an attacker that can access the message...

6.5CVSS5.8AI score0.00115EPSS
Exploits1References2
NVD
NVD
added 2025/05/01 6:15 p.m.17 views

CVE-2025-32888

An issue was discovered on goTenna Mesh devices with app 5.5.3 and firmware 1.1.12. The verification token used for sending SMS through a goTenna server is hardcoded in the app...

8.8CVSS0.0016EPSS
Exploits0References2
OSV
OSV
added 2025/05/01 6:15 p.m.6 views

CVE-2025-32888

An issue was discovered on goTenna Mesh devices with app 5.5.3 and firmware 1.1.12. The verification token used for sending SMS through a goTenna server is hardcoded in the app...

8.8CVSS5.8AI score0.0016EPSS
Exploits0References2
NVD
NVD
added 2025/05/01 6:15 p.m.19 views

CVE-2025-32890

An issue was discovered on goTenna Mesh devices with app 5.5.3 and firmware 1.1.12. It uses a custom implementation of encryption without any additional integrity checking mechanisms. This leaves messages malleable to an attacker that can access the message...

6.5CVSS0.00115EPSS
Exploits1References2
NVD
NVD
added 2025/05/01 6:15 p.m.15 views

CVE-2025-32883

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2024-41722. Reason: This candidate is a reservation duplicate of CVE-2024-41722. Notes: All CVE users should reference CVE-2024-41722. instead of this candidate. All references and descriptions in this candidate have been removed ...

Exploits0
NVD
NVD
added 2025/05/01 6:15 p.m.22 views

CVE-2025-32884

An issue was discovered on goTenna Mesh devices with app 5.5.3 and firmware 1.1.12. By default, a GID is the user's phone number unless they specifically opt out. A phone number is very sensitive information because it can be tied back to individuals. The app does not encrypt the GID in messages...

6.5CVSS0.00137EPSS
Exploits0References2
OSV
OSV
added 2025/05/01 6:15 p.m.5 views

CVE-2025-32884

An issue was discovered on goTenna Mesh devices with app 5.5.3 and firmware 1.1.12. By default, a GID is the user's phone number unless they specifically opt out. A phone number is very sensitive information because it can be tied back to individuals. The app does not encrypt the GID in messages...

6.5CVSS5.8AI score0.00137EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/05/01 12:0 a.m.7 views

CVE-2025-32884

An issue was discovered on goTenna Mesh devices with app 5.5.3 and firmware 1.1.12. By default, a GID is the user's phone number unless they specifically opt out. A phone number is very sensitive information because it can be tied back to individuals. The app does not encrypt the GID in messages...

4.3CVSS6.6AI score0.00137EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/05/01 12:0 a.m.10 views

CVE-2025-32890

An issue was discovered on goTenna Mesh devices with app 5.5.3 and firmware 1.1.12. It uses a custom implementation of encryption without any additional integrity checking mechanisms. This leaves messages malleable to an attacker that can access the message...

5.3CVSS5.4AI score0.00115EPSS
Exploits1References2
CVE
CVE
added 2025/05/01 12:0 a.m.56 views

CVE-2025-32883

The CVE-2025-32883 entry concerns goTenna Mesh versions 5.5.3 and firmware 1.1.12. A vulnerability allows injection of custom messages into existing mesh networks using a software defined radio, with attacker-supplied GID and Callsign. The issue is exploitable in unencrpyted environments or when ...

6.5CVSS6.4AI score
Exploits0
CVE
CVE
added 2025/05/01 12:0 a.m.50 views

CVE-2025-32888

GoTenna Mesh CVE-2025-32888 affects devices running app 5.5.3 with firmware 1.1.12, where the verification token used for sending SMS through a goTenna server is hardcoded in the app. Reported impact indicators show high severity (CVSS v3.1: base score 8.8) with confidentiality, integrity, and av...

8.8CVSS7.3AI score0.0016EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2025/05/01 12:0 a.m.62 views

CVE-2025-32890

CVE-2025-32890 affects goTenna Mesh devices running app 5.5.3 and firmware 1.1.12. The root cause is a custom encryption implementation without additional integrity checks, making messages malleable and potentially accessible to an attacker who can access the message. The connected documents conf...

6.5CVSS7.1AI score0.00115EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2025/05/01 12:0 a.m.7 views

CVE-2025-32883

An issue was discovered on goTenna Mesh devices with app 5.5.3 and firmware 1.1.12. The app there makes it possible to inject any custom message into existing mesh networks with any GID and Callsign via a software defined radio. This can be exploited if the device is being used in an unencrypted...

6.5CVSS6.9AI score
Exploits0References2
Rows per page
Query Builder