Meatmeet Meatmeet_pro_wifi_\&_bluetooth_meat_thermometer

7 CVEs affecting Meatmeet Meatmeet_pro_wifi_\&_bluetooth_meat_thermometer. Latest disclosed: 2025-12-10. Critical: 1, High: 2.

Top CVEs affecting Meatmeet Meatmeet_pro_wifi_\&_bluetooth_meat_thermometer
CVESeverityScorePublishedSummary
CVE-2025-65823Critical9.82025-12-10The Meatmeet Pro was found to be shipped with hardcoded Wi-Fi credentials in the firmware, for the test network it was developed on. If an attacker retrieved t…
CVE-2025-65824High8.82025-12-10An unauthenticated attacker within proximity of the Meatmeet device can perform an unauthorized Over The Air (OTA) firmware upgrade using Bluetooth Low Energy…
CVE-2025-65821High7.52025-12-10As UART download mode is still enabled on the ESP32 chip on which the firmware runs, an adversary can dump the flash from the device and retrieve sensitive inf…
CVE-2025-65829Medium6.82025-12-10The ESP32 system on a chip (SoC) that powers the Meatmeet basestation device was found to lack Secure Boot. The Secure Boot feature ensures that only authentic…
CVE-2025-65822Medium6.82025-12-10The ESP32 system on a chip (SoC) that powers the Meatmeet Pro was found to have JTAG enabled. By leaving JTAG enabled on an ESP32 in a commercial product an at…
CVE-2025-65828Medium6.52025-12-10An unauthenticated attacker within proximity of the Meatmeet device can issue several commands over Bluetooth Low Energy (BLE) to these devices which would res…
CVE-2025-65825Medium4.62025-12-10The firmware on the basestation of the Meatmeet is not encrypted. An adversary with physical access to the Meatmeet device can disassemble the device, connect…