CVE-2024-47124
Cleartext Transmission of Sensitive Information in goTenna Pro
The goTenna Pro App does not encrypt callsigns in messages. It is
recommended to not use sensitive information in callsigns when using
this and previous versions of the app and update your app to the current
app version which uses AES-256 encryption for callsigns in encrypted
operation.
CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
Affected products
goTenna · ProWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →