CVE-2025-32887 is a vulnerability identified in goTenna v1 devices running app version 5.5.3 and firmware version 0.25.5. The core issue lies in the device's command channel, which includes the 'next hop' information in its communications. This next hop data can be intercepted by an attacker, enabling them to break the frequency hopping mechanism that goTenna devices use to secure their wireless communications. Frequency hopping is a technique that rapidly switches the carrier among many frequency channels, making interception and jamming more difficult. By exposing the next hop, the attacker gains insight into the communication path and can predict or disrupt frequency changes. The vulnerability is classified under CWE-319 (Cleartext Transmission of Sensitive Information), indicating that sensitive routing information is transmitted without adequate protection. The CVSS v3.1 base score is 7.1, reflecting a high severity level. The vector indicates that the attack requires low attack complexity (AC:L), remote network access (AV:A), no privileges (PR:N), and no user interaction (UI:N). The impact is high on availability (A:H), low on confidentiality (C:L), and none on integrity (I:N). No known exploits are currently in the wild, and no patches have been published yet. This vulnerability affects the confidentiality of routing information and availability of communications by potentially allowing attackers to disrupt or intercept transmissions, but it does not allow modification of data or require user interaction to exploit. The vulnerability is particularly relevant to environments relying on goTenna devices for off-grid or mesh communications, such as emergency services, outdoor expeditions, or tactical communications where network infrastructure is unavailable or unreliable.

For European organizations, especially those involved in emergency response, outdoor activities, defense, or critical infrastructure monitoring that utilize goTenna v1 devices, this vulnerability poses a significant risk. The ability to intercept next hop information and break frequency hopping can lead to targeted jamming or interception of communications, severely impacting availability and operational continuity. Confidentiality impact is limited but still present, as routing information exposure could aid adversaries in mapping communication networks. Disruption of communications in critical scenarios such as disaster response or military operations could have severe consequences. Additionally, since the vulnerability does not require user interaction or privileges, attackers with network access (e.g., within radio range) can exploit it remotely, increasing the threat surface. The lack of patches means organizations must rely on mitigations until updates are available. The impact is heightened in scenarios where goTenna devices are used as primary communication means in remote or hostile environments, common in certain European border regions, mountainous areas, or during large-scale public events.

Organizations should implement the following specific mitigations: 1) Limit the physical and radio access to goTenna devices by controlling device distribution and usage areas to reduce the risk of interception. 2) Employ additional encryption or VPN tunnels over goTenna communications where possible to protect routing information and payload data. 3) Monitor radio spectrum for unusual activity or jamming attempts that could indicate exploitation of this vulnerability. 4) Use alternative or backup communication methods in critical operations to maintain availability if goTenna communications are disrupted. 5) Engage with the device vendor or community to track patch releases and apply firmware/app updates promptly once available. 6) Conduct security awareness training for users on the risks of using vulnerable devices in sensitive operations. 7) Consider device replacement or upgrades to newer models or firmware versions that do not exhibit this vulnerability if operationally feasible.