Approved changes feed: RSS · Atom

cpe:2.3:h:gotenna:mesh:-:*:*:*:*:*:*:*

part: h version: - update: *

VendorGotenna (04dc2b99-45b6-5512-bd24-ced62841f7d2)
ProductMesh (5684020a-de3c-57d0-93ba-bccf51d82703)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2025-32890 not_vulnerable 2026-06-08 07:19:00.946962 Details available
MEDIUM (5.3)
An issue was discovered on goTenna Mesh devices with app 5.5.3 and firmware 1.1.12. It uses a custom implementation of encryption without any additional integrity checking mechanisms. This leaves messages malleable to an attacker that can access the message.
Published: 2025-05-01T00:00:00.000Z
Updated: 2025-05-01T18:49:46.775Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2025-32889 not_vulnerable 2026-06-08 07:19:00.940104 Details available
HIGH (7.3)
An issue was discovered on goTenna v1 devices with app 5.5.3 and firmware 0.25.5. The verification token used for sending SMS through a goTenna server is hardcoded in the app.
Published: 2025-05-01T00:00:00.000Z
Updated: 2025-05-01T18:52:25.319Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2025-32888 not_vulnerable 2026-06-08 07:19:00.939625 Details available
HIGH (7.3)
An issue was discovered on goTenna Mesh devices with app 5.5.3 and firmware 1.1.12. The verification token used for sending SMS through a goTenna server is hardcoded in the app.
Published: 2025-05-01T00:00:00.000Z
Updated: 2025-05-01T19:11:36.218Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2025-32887 not_vulnerable 2026-06-08 07:19:00.939308 Details available
HIGH (7.1)
An issue was discovered on goTenna v1 devices with app 5.5.3 and firmware 0.25.5. A command channel includes the next hop. which can be intercepted and used to break frequency hopping.
Published: 2025-05-01T00:00:00.000Z
Updated: 2025-05-01T19:19:41.743Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2025-32886 not_vulnerable 2026-06-08 07:19:00.938924 Details available
MEDIUM (4)
An issue was discovered on goTenna v1 devices with app 5.5.3 and firmware 0.25.5. All packets sent over RF are also sent over UART with USB Shell, allowing someone with local access to gain information about the protocol and intercept sensitive data.
Published: 2025-05-01T00:00:00.000Z
Updated: 2025-05-01T19:26:19.888Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2025-32885 not_vulnerable 2026-06-08 07:19:00.938589 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2025-32884 not_vulnerable 2026-06-08 07:19:00.937808 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2025-32882 not_vulnerable 2026-06-08 07:19:00.935432 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2025-32881 not_vulnerable 2026-06-08 07:19:00.934066 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.