cbcvebase.
CVE-2025-65824
published 2025-12-10

CVE-2025-65824: An unauthenticated attacker within proximity of the Meatmeet device can perform an unauthorized Over The Air (OTA) firmware upgrade using Bluetooth Low Energy…

PriorityP358high8.8CVSS 3.1
AVAACLPRNUINSUCHIHAH
EPSS
0.49%
38.6th percentile
An unauthenticated attacker within proximity of the Meatmeet device can perform an unauthorized Over The Air (OTA) firmware upgrade using Bluetooth Low Energy (BLE), resulting in the firmware on the device being overwritten with the attacker's code. As the device does not perform checks on upgrades, this results in Remote Code Execution (RCE) and the victim losing complete access to the Meatmeet.

Affected

1 ranges
VendorProductVersion rangeFixed in
meatmeetmeatmeet_pro_wifi_bluetooth_meat_thermometer_firmware
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.