CNNVD-202601-4628 Information

CNNVD ID

CNNVD-202601-4628

Related CVE

CVE-2025-55292

• CNNVD Published: 2026-01-28

Description (Chinese)

Meshtastic是Meshtastic开源的一种去中心化无线离网网状网络 LoRa 协议。 Meshtastic存在安全漏洞，该漏洞源于节点标识机制存在缺陷，可能导致攻击者伪造节点信息并劫持通信。

Description (English)

Meshtastic is a decentralised wireless network LoRA protocol that is an open source of Meshtastic. There is a security loophole in Meshtastic, which stems from deficiencies in nodal marking mechanisms, which may lead to the forging of nodal information and hijacking of communications by the attackers.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Meshtastic

Published

2026-01-28

Last Modified

2026-02-24

References

https://github.com/meshtastic/firmware/commit/e5e8683cdba133e726033101586c3235a8678893 https://github.com/meshtastic/firmware/security/advisories/GHSA-45vg-3f35-7ch2

Patch

https://meshtastic.org/downloads/