CVE-2025-32887

An issue was discovered on goTenna v1 devices with app 5.5.3 and firmware 0.25.5. A command channel includes the next hop. which can be intercepted and used to break frequency hopping.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.1 HIGH
ADJACENT_NETWORK
LOW
NONE
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H
mitreCNA
7.1 HIGH
ADJACENT_NETWORK
LOW
NONE
CVSS:3.1/AC:L/AV:A/A:H/C:L/I:N/PR:N/S:U/UI:N
CISA-ADPADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 1%
VendorProductVersion
gotennamesh_firmware
0.25.5
gotennagotenna
5.5.3
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://github.com/Dollarhyde/goTenna_v1_and_Mesh_vulnerabilities
https://gotenna.com