PT-2024-32426 · Gotenna · Gotenna Pro X+2
Clayton Smith
+2
·
Published
2024-09-26
·
Updated
2024-10-17
·
CVE-2024-47130
CVSS v3.1
8.8
High
| Vector | AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
goTenna Pro App (affected versions not specified)
goTenna Pro X (affected versions not specified)
goTenna Pro X2 (affected versions not specified)
Description
The goTenna Pro series allows unauthenticated attackers to remotely update the local public keys used for P2P and group messages. This issue affects the encryption protocols used by the app.
Recommendations
For goTenna Pro App, update your app to the current release for enhanced encryption protocols.
For goTenna Pro X, update your app to the current release for enhanced encryption protocols.
For goTenna Pro X2, update your app to the current release for enhanced encryption protocols.
Fix
Missing Authentication
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Gotenna Pro App
Gotenna Pro X
Gotenna Pro X2