Vulnerabilities > CVE-2024-41931 - Unspecified vulnerability in Gotenna

CVSS 4.3 - MEDIUM

Attack vector

ADJACENT_NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

LOW

Integrity impact

NONE

Availability impact

NONE

low complexity

gotenna

NVD

Published: 2024-09-26

Updated: 2024-10-17

Summary

The goTenna Pro ATAK Plugin encryption key name is always sent unencrypted when the key is sent over RF through a broadcast message. It is advised to share the encryption key via local QR for higher security operations.

Vulnerable Configurations

Part	Description	Count
Application	Gotenna Gotenna Gotenna *	1

References

https://www.cisa.gov/news-events/ics-advisories/icsa-24-270-05