Lucene search
CertccCVELIST:CVE-2016-6539HistoryJul 06, 2018 - 9:00 p.m.
CVE-2016-6539 TrackR Bravo MAC address can be exposed in close proximity and used to obtain the device ID
2018-07-0621:00:00
CWE-200
certcc
www.cve.org
The Trackr device ID is constructed of a manufacturer identifier of four zeroes followed by the BLE MAC address in reverse. The MAC address can be obtained by being in close proximity to the Bluetooth device, effectively exposing the device ID. The ID can be used to track devices. Updated apps, version 5.1.6 for iOS and 2.2.5 for Android, have been released by the vendor to address the vulnerabilities in CVE-2016-6538, CVE-2016-6539, CVE-2016-6540 and CVE-2016-6541.
CNA Affected
[
{
"platforms": [
"iOS"
],
"product": "Bravo Mobile Application",
"vendor": "TrackR",
"versions": [
{
"status": "unaffected",
"version": "5.1.6"
}
]
},
{
"platforms": [
"Android"
],
"product": "Bravo Mobile Application",
"vendor": "TrackR",
"versions": [
{
"status": "unaffected",
"version": "2.2.5"
}
]
}
]Related
cvelist
cvelist
nvd
nvd
prion
prion
Improper access control
2018-07-06 21:29:00
Code injection
2018-07-06 21:29:00
Code injection
2018-07-06 21:29:00
cert
cert
TrackR Bravo contains multiple vulnerabilities
2016-10-25 00:00:00
cve
cve
securelist
securelist
I know where your pet is
2018-05-22 10:00:52