CVE-2025-65824 – An unauthenticated attacker within Bluetooth ra... (How to Fix)

Q: What is the severity of CVE-2025-65824?

CVE-2025-65824 has a CVSS score of 8.8 (HIGH). An unauthenticated attacker within Bluetooth range can perform unauthorized firmware upgrades on Meatmeet devices via BLE, leading to complete device takeover. This affects all Meatmeet devices that don't validate firmware updates, allowing attackers to execute arbitrary code and lock out legitimate users.

📋 TL;DR

An unauthenticated attacker within Bluetooth range can perform unauthorized firmware upgrades on Meatmeet devices via BLE, leading to complete device takeover. This affects all Meatmeet devices that don't validate firmware updates, allowing attackers to execute arbitrary code and lock out legitimate users.

💻 Affected Systems

Products:

Meatmeet devices

Versions: All versions prior to patched firmware

Operating Systems: Embedded firmware

Default Config Vulnerable: ⚠️ Yes

Notes: All Meatmeet devices with BLE enabled are vulnerable in default configuration. No special configuration required for exploitation.

📦 What is this software?

Meatmeet Pro Wifi \& Bluetooth Meat Thermometer Firmware by Meatmeet

View all CVEs affecting Meatmeet Pro Wifi \& Bluetooth Meat Thermometer Firmware →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete device compromise with persistent attacker-controlled firmware, enabling surveillance, data theft, or device bricking across all vulnerable devices in physical proximity.

🟠

Likely Case

Attacker overwrites firmware to disable device functionality or install malicious code for botnet participation, causing service disruption for victims.

🟢

If Mitigated

With proper firmware validation and authentication, impact is limited to denial of service attempts that fail due to security checks.

🌐 Internet-Facing: LOW - Exploitation requires physical proximity via Bluetooth, not internet connectivity.

🏢 Internal Only: MEDIUM - Risk exists within physical premises where attackers can get within Bluetooth range of devices.

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: LIKELY

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

Public proof-of-concept available on GitHub. Exploitation requires BLE communication tools but no authentication or special privileges.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: None available

Restart Required: Yes

Instructions:

1. Check vendor website for firmware updates 2. Download official firmware 3. Apply update via authorized method 4. Verify firmware integrity

🔧 Temporary Workarounds

Disable BLE when not in use

all

Turn off Bluetooth Low Energy functionality to prevent unauthorized access

Device-specific command to disable BLE

Physical access control

all

Restrict physical access to devices to prevent proximity-based attacks

🧯 If You Can't Patch

Isolate devices in secure physical locations with limited access
Implement network segmentation to limit potential lateral movement if compromised

🔍 How to Verify

Check if Vulnerable:

Attempt BLE connection to device and check if firmware upgrade can be initiated without authentication

Check Version:

Device-specific command to display firmware version

Verify Fix Applied:

Verify firmware signature validation is enforced and BLE requires authentication for firmware updates

📡 Detection & Monitoring

Log Indicators:

Unexpected firmware update attempts
BLE connection attempts from unauthorized devices
Firmware version changes without authorized updates

Network Indicators:

Unusual BLE traffic patterns
Firmware download attempts via BLE

SIEM Query:

source="device_logs" AND (event="firmware_update" OR event="ble_connection") AND user="unknown"

📊 Metadata

CVE ID: CVE-2025-65824

CVSS v3 Score: 8.8 (HIGH)

CVSS Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-306

EPSS Score: 0.28% exploit probability (51.1th percentile)

Published: December 10, 2025

Last Updated: January 21, 2026

🔗 References

https://gist.github.com/dead1nfluence/4dffc239b4a460f41a03345fd8e5feb5#file-remote-code-execution-md Third Party Advisory,Exploit
https://github.com/dead1nfluence/Meatmeet-Pro-Vulnerabilities/blob/main/Device/Remote-Code-Execution.md Third Party Advisory,Exploit

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-65824, you might also want to check these: