CVE-2022-24400

Name of the Vulnerable Software and Affected Versions TETRA (affected versions not specified)

Description A flaw in the TETRA authentication procedure allows a Man-In-The-Middle (MITM) adversary that can predict the MS challenge RAND2 to set session key DCK to zero. This issue does not specify the number of potentially affected devices or any real-world incidents where this issue was exploited.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.