goTenna V1 and Mesh Frequency Hopping Vulnerability

Vulnerability

A vulnerability exists in goTenna V1 devices running app version 5.5.3 and firmware 0.25.5. The issue arises from a command channel that transmits the next hop information in cleartext, which can be intercepted and used to disrupt the device's frequency hopping mechanism. This vulnerability was reported to goTenna in 2017 and 2018, but the company discontinued support for goTenna V1 and goTenna Mesh devices in 2024.

Impact

Exploitation of this vulnerability allows for interception of command channel information, which can be used to break the device's frequency hopping, potentially leading to communication disruptions.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

2.9

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

2.9

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

goTenna V1 and Mesh Frequency Hopping Vulnerability

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating