| ID |
CVE-2024-45838
|
| Sažetak |
The goTenna Pro ATAK Plugin does not encrypt callsigns in messages. It
is advised to not use sensitive information in callsigns when using this
and previous versions of the plugin. Update to current plugin version
which uses AES-256 encryption for callsigns in encrypted operation |
| Reference |
|
| CVSS |
| Base: | 4.3 |
| Impact: | 1.4 |
| Exploitability: | 2.8 |
|
| Pristup |
| Vektor | Složenost | Autentikacija |
| ADJACENT_NETWORK |
LOW |
NONE |
|
| Impact |
| Povjerljivost | Cjelovitost | Dostupnost |
| LOW |
NONE |
NONE |
|
| CVSS vektor |
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N |
| Zadnje važnije ažuriranje |
17-10-2024 - 17:15 |
| Objavljeno |
26-09-2024 - 18:15 |
