CVE-2024-45374 - goTenna Pro ATAK Plugin - Weak Encryption Key Storage

1 month ago 17
ARTICLE AD BOX
CVE ID : CVE-2024-45374
Published : Sept. 26, 2024, 6:15 p.m. | 24 minutes ago
Description : In the goTenna Pro ATAK Plugin application, the encryption keys are stored along with a static IV on the device. This allows for complete decryption of keys stored on the device. This allows an attacker to decrypt all encrypted broadcast communications based on broadcast keys stored on the device.
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
Read Entire Article