Vulnerabilities > CVE-2024-47128 - Unspecified vulnerability in Gotenna PRO

CVSS 4.3 - MEDIUM

Attack vector

ADJACENT_NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

LOW

Integrity impact

NONE

Availability impact

NONE

low complexity

gotenna

NVD

Published: 2024-09-26

Updated: 2024-10-17

Summary

The goTenna Pro App encryption key name is always sent unencrypted when the key is shared over RF through a broadcast message. It is advised to share the encryption key via local QR for higher security operations.

Vulnerable Configurations

Part	Description	Count
Application	Gotenna Gotenna Gotenna PRO *	2

References

https://www.cisa.gov/news-events/ics-advisories/icsa-24-270-04