ICS-CERT AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

The goTenna Pro series use AES CTR mode for short, encrypted messages without any additional integrity checking mechanisms. This leaves messages malleable to any attacker that can access the message.

The goTenna Pro App uses AES CTR type encryption for short, encrypted 
messages without any additional integrity checking mechanisms. This 
leaves messages malleable to an attacker that can access the message. It
 is recommended to continue to use encryption in the app and update to 
the current release for more secure operations.

OR
     *cpe:2.3:a:gotenna:gotenna_pro:*:*:*:*:*:iphone_os:*:* versions up to (including) 1.6.1
     *cpe:2.3:a:gotenna:gotenna_pro:*:*:*:*:*:android:*:* versions up to (excluding) 2.0.3

OR
     *cpe:2.3:a:gotenna:gotenna_pro:*:*:*:*:*:*:*:* versions up to (including) 1.6.1

OR
     *cpe:2.3:a:gotenna:gotenna_pro:*:*:*:*:*:*:*:* versions up to (including) 1.6.1

NIST AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

NIST CWE-345

https://www.cisa.gov/news-events/ics-advisories/icsa-24-270-04 No Types Assigned

https://www.cisa.gov/news-events/ics-advisories/icsa-24-270-04 Third Party Advisory, US Government Resource

CISA-ADP AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:N

ICS-CERT CVSS:4.0/AV:A/AC:H/AT:P/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

ICS-CERT CWE-353

The goTenna Pro series use AES CTR mode for short, encrypted messages without any additional integrity checking mechanisms. This leaves messages malleable to any attacker that can access the message.

ICS-CERT https://www.cisa.gov/news-events/ics-advisories/icsa-24-270-04 [No types assigned]