threat
engine
.sh
Back
·
··:··
Home
/
Product
/
meatmeet pro wifi \& bluetooth meat thermometer
Product
meatmeet pro wifi \& bluetooth meat thermometer
13 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2025-65832
all versions
The mobile application insecurely handles information stored within memory. By performing a memory dump on the application after a
4.6
MEDIUM
CVE-2025-65831
all versions
The application uses an insecure hashing algorithm (MD5) to hash passwords. If an attacker obtained a copy of these hashes, either
7.5
HIGH
CVE-2025-65830
all versions
Due to a lack of certificate validation, all traffic from the mobile application can be intercepted. As a result, an adversary loc
9.1
CRITICAL
CVE-2025-65829
all versions
The ESP32 system on a chip (SoC) that powers the Meatmeet basestation device was found to lack Secure Boot. The Secure Boot featur
6.8
MEDIUM
CVE-2025-65828
all versions
An unauthenticated attacker within proximity of the Meatmeet device can issue several commands over Bluetooth Low Energy (BLE) to
6.5
MEDIUM
CVE-2025-65827
all versions
The mobile application is configured to allow clear text traffic to all domains and communicates with an API server over HTTP. As
9.1
CRITICAL
CVE-2025-65826
all versions
The mobile application was found to contain stored credentials for the network it was developed on. If an attacker retrieved this,
9.8
CRITICAL
CVE-2025-65825
all versions
The firmware on the basestation of the Meatmeet is not encrypted. An adversary with physical access to the Meatmeet device can dis
4.6
MEDIUM
CVE-2025-65824
all versions
An unauthenticated attacker within proximity of the Meatmeet device can perform an unauthorized Over The Air (OTA) firmware upgrad
8.8
HIGH
CVE-2025-65823
all versions
The Meatmeet Pro was found to be shipped with hardcoded Wi-Fi credentials in the firmware, for the test network it was developed o
9.8
CRITICAL
CVE-2025-65822
all versions
The ESP32 system on a chip (SoC) that powers the Meatmeet Pro was found to have JTAG enabled. By leaving JTAG enabled on an ESP32
6.8
MEDIUM
CVE-2025-65821
all versions
As UART download mode is still enabled on the ESP32 chip on which the firmware runs, an adversary can dump the flash from the devi
7.5
HIGH
CVE-2025-65820
all versions
An issue was discovered in Meatmeet Android Mobile Application 1.1.2.0. An exported activity can be spawned with the mobile applic
9.8
CRITICAL
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin