CVE-2024-47123 Information

Description

The goTenna Pro series use AES CTR mode for short encrypted messages without any additional integrity checking mechanisms. This leaves messages malleable to any attacker that can access the message.

Reference

https://www.cisa.gov/news-events/ics-advisories/icsa-24-270-04