EUVD-2025-13278

Malicious code in bioql PyPI...

CVE-2025-32882

An issue was discovered on goTenna v1 devices with app 5.5.3 and firmware 0.25.5. The app uses a custom implementation of encryption without any additional integrity checking mechanisms. This leaves messages malleable to an attacker that can access the message...

CVE-2025-32887

An issue was discovered on goTenna v1 devices with app 5.5.3 and firmware 0.25.5. A command channel includes the next hop. which can be intercepted and used to break frequency hopping...

CVE-2025-32887

An issue was discovered on goTenna v1 devices with app 5.5.3 and firmware 0.25.5. A command channel includes the next hop. which can be intercepted and used to break frequency hopping...

CVE-2025-32881

The CVE-2025-32881 entry concerns goTenna v1 devices with app 5.5.3 and firmware 0.25.5, where the GID default is the user’s phone number unless opted out. The issue is that the GID is not encrypted in messages, creating a potential privacy risk since a phone number can be linked to individuals. ...

CVE-2025-32882

An issue was discovered on goTenna v1 devices with app 5.5.3 and firmware 0.25.5. The app uses a custom implementation of encryption without any additional integrity checking mechanisms. This leaves messages malleable to an attacker that can access the message...

goTenna V1 安全漏洞

goTenna V1 is a portable offline communication device from goTenna that enables long-range peer-to-peer communication between smartphones via mesh network technology. A security vulnerability exists in goTenna V1, which originates from sending data via UART and could lead to sensitive data leakag...

CVE-2025-32889

CVE-2025-32889 concerns goTenna v1 devices affected by app 5.5.3 and firmware 0.25.5, where the verification token used for sending SMS through a goTenna server is hardcoded in the app. The root cause is a hardcoded token in the mobile application, enabling potential misuse of the SMS sending pro...