Vulnerabilities > CVE-2024-47129 - Information Exposure Through Discrepancy vulnerability in Gotenna PRO

047910
CVSS 4.3 - MEDIUM
Attack vector
ADJACENT_NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
LOW
Integrity impact
NONE
Availability impact
NONE
low complexity
gotenna
CWE-203

Summary

The goTenna Pro App does not inject extra characters into broadcasted frames to obfuscate the length of messages. This makes it possible to tell the length of the payload regardless of the encryption used.

Vulnerable Configurations

Part Description Count
Application
Gotenna
2

Common Weakness Enumeration (CWE)