Medium severity5.3NVD Advisory· Published Sep 26, 2024· Updated Jun 17, 2026
CVE-2024-43108
CVE-2024-43108
Description
The goTenna Pro ATAK Plugin uses AES CTR type encryption for short, encrypted messages without any additional integrity checking mechanisms. This leaves messages malleable to an attacker that can access the message. It is advised to continue to use encryption in the plugin and update to the current release for enhanced encryption protocols.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- goTenna/Pro ATAK Pluginv5Range: 0
Patches
Vulnerability mechanics
References
1- www.cisa.gov/news-events/ics-advisories/icsa-24-270-05nvdThird Party AdvisoryUS Government Resource
News mentions
0No linked articles in our index yet.