Meatmeet Meatmeet Pro Wifi & Bluetooth Meat Thermometer Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Meatmeet Meatmeet Pro Wifi & Bluetooth Meat Thermometer Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2025-65823 — CVSS 9.8 (critical): The Meatmeet Pro was found to be shipped with hardcoded Wi-Fi credentials in the firmware, for the test network it was developed on. If an…
CVE-2025-65824 — CVSS 8.8 (high): An unauthenticated attacker within proximity of the Meatmeet device can perform an unauthorized Over The Air (OTA) firmware upgrade using…
CVE-2025-65821 — CVSS 7.5 (high): As UART download mode is still enabled on the ESP32 chip on which the firmware runs, an adversary can dump the flash from the device and…
CVE-2025-65822 — CVSS 6.8 (medium): The ESP32 system on a chip (SoC) that powers the Meatmeet Pro was found to have JTAG enabled. By leaving JTAG enabled on an ESP32 in a…
CVE-2025-65829 — CVSS 6.8 (medium): The ESP32 system on a chip (SoC) that powers the Meatmeet basestation device was found to lack Secure Boot. The Secure Boot feature ensures…
CVE-2025-65828 — CVSS 6.5 (medium): An unauthenticated attacker within proximity of the Meatmeet device can issue several commands over Bluetooth Low Energy (BLE) to these…
CVE-2025-65825 — CVSS 4.6 (medium): The firmware on the basestation of the Meatmeet is not encrypted. An adversary with physical access to the Meatmeet device can disassemble…