Gotenna Pro Security Vulnerabilities and Issues — Gotenna Pro CVE List

Lucene search

GotennaGotenna Pro

3 matches found

CVE•added 2024/09/26 6:15 p.m.•37 views

CVE-2024-47130

The goTenna Pro App allows unauthenticated attackers to remotely updatethe local public keys used for P2P and group messages. It is advised toupdate your app to the current release for enhanced encryptionprotocols.

8.8CVSS7.6AI score0.00078EPSS

CVE•added 2024/09/26 6:15 p.m.•36 views

CVE-2024-47125

The goTenna Pro App does not authenticate public keys which allows anunauthenticated attacker to manipulate messages. It is advised to updateyour app to the current release for enhanced encryption protocols.

8.1CVSS6.7AI score0.00051EPSS

CVE•added 2024/09/26 6:15 p.m.•33 views

CVE-2024-47126

The goTenna Pro App does not use SecureRandom when generating passwordsfor sharing cryptographic keys. The random function in use makes iteasier for attackers to brute force this password if the broadcastedencryption key is captured over RF. This only applies to the optionalbroadcast of an encrypti...

8.8CVSS7.2AI score0.00035EPSS