CVE Details: CVE-2024-47123

Description

The goTenna Pro series use AES CTR mode for short, encrypted messages without any additional integrity checking mechanisms. This leaves messages malleable to any attacker that can access the message.

Published Date: 2024-09-26
Last Modified Date: 2024-10-07
Severity: LOW
CVSS v3 Score: 3.1
CWE ID: CWE-345
Attack Vector: ADJACENT_NETWORK
Attack Complexity: HIGH
Privileges Required: NONE
User Interaction: NONE
Scope: UNCHANGED
Confidentiality Impact: NONE
Integrity Impact: LOW
Availability Impact: NONE

Back to CVE List