CVE-2025-32889 HIGH

CVE-2025-32889

Vendor N/A
Product n/a
Published May 1, 2025
Last update May 1, 2025

CVSS base score

7.3/10
Attack vector Local
Attack complexity Low
Privileges required None
User interaction None
Confidentiality Low
Integrity Low

CVSS vector

CVSS:3.1/AC:L/AV:L/A:H/C:L/I:L/PR:N/S:U/UI:N

What the vulnerability does

01Description

An issue was discovered on goTenna v1 devices with app 5.5.3 and firmware 0.25.5. The verification token used for sending SMS through a goTenna server is hardcoded in the app.

Key dates

02Disclosure timeline

May 1, 2025 CVE published
May 1, 2025 Record updated