3 matches found
Apple/Google Exposure Notification API Information Disclosure Vulnerability
The Apple/Google Exposure Notification API is a contact tracking survey application for pandemic diseases. An information disclosure vulnerability exists in the Apple/Google Exposure Notification API beta 2020-05-29 and earlier versions, which can be exploited by an attacker to bypass Bluetooth...
Design/Logic Flaw
The Rolling Proximity Identifier used in the Apple/Google Exposure Notification API beta through 2020-05-29 enables attackers to circumvent Bluetooth Smart Privacy because there is a secondary temporary UID. An attacker with access to Beacon or IoT networks can seamlessly track individual device...
CVE-2020-13702
The CVE-2020-13702 entry concerns the Rolling Proximity Identifier used by the Apple/Google Exposure Notification API (beta through 2020-05-29). A secondary temporary UID enables attackers within Beacon/IoT networks to track an individual device’s movements via Bluetooth LE discovery, compromisin...