9 matches found
CVE-2020-12717
The COVIDSafe Australia app 1.0 and 1.1 for iOS allows a remote attacker to crash the app, and consequently interfere with COVID-19 contact tracing, via a Bluetooth advertisement containing manufacturer data that is too short. This occurs because of an erroneous OpenTrace manuData.subdata call. T...
EUVD-2020-5005
Malware in sbrugna...
Google Android has an unspecified vulnerability
Android is a Linux-based open source operating system from Google and the Open Handset Alliance OHA.Bluetooth BR/EDR is a Bluetooth BR/EDR Basic Rate/Enhanced Data Rate standard from Google and the Open Handset Alliance OHA. COVIDSafe app is a coronavirus contact tracing application from Google a...
Code injection
In the COVIDSafe application through 1.0.21 for Android, unsafe use of the Bluetooth transport option in the GATT connection allows attackers to trick the application into establishing a connection over Bluetooth BR/EDR transport, which reveals the public Bluetooth address of the victim's phone...
COVIDSafe app information disclosure vulnerability (CNVD-2020-30664)
COVIDSafe app is an Australian coronavirus contact tracing app. An information disclosure vulnerability exists in the COVIDSafe app. The vulnerability stems from errors such as configuration during operation of a networked system or product. An attacker could exploit the vulnerability to obtain...
COVIDSafe app information disclosure vulnerability (CNVD-2020-30665)
COVIDSafe app is an Australian coronavirus contact tracing app. An information disclosure vulnerability exists in the COVIDSafe app. The vulnerability stems from errors such as configuration during operation of a networked system or product. An attacker could exploit the vulnerability to obtain...
COVIDSafe app input validation error vulnerability
COVIDSafe app is an Australian coronavirus contact tracing app. A security vulnerability exists in versions 1.0 and 1.1 of the COVIDSafe app for IOS-based systems. A remote attacker could exploit the vulnerability by sending specially crafted advertisements via Bluetooth to cause the app to crash...
CVE-2020-12717
The COVIDSafe Australia app 1.0 and 1.1 for iOS allows a remote attacker to crash the app, and consequently interfere with COVID-19 contact tracing, via a Bluetooth advertisement containing manufacturer data that is too short. This occurs because of an erroneous OpenTrace manuData.subdata call. T...
CVE-2020-12717
The COVIDSafe Australia app 1.0 and 1.1 for iOS allows a remote attacker to crash the app, and consequently interfere with COVID-19 contact tracing, via a Bluetooth advertisement containing manufacturer data that is too short. This occurs because of an erroneous OpenTrace manuData.subdata call. T...