Luca Security Vulnerabilities and Issues — Luca CVE List

Lucene search

Luca-appLuca

3 matches found

CVE•added 2021/06/04 12:15 a.m.•82 views

CVE-2021-33840

The server in Luca through 1.1.14 allows remote attackers to cause a denial of service (insertion of many fake records related to COVID-19) because Phone Number data lacks a digital signature.

7.5CVSS7.7AI score0.00482EPSS

CVE•added 2021/06/04 12:15 a.m.•69 views

CVE-2021-33838

Luca through 1.7.4 on Android allows remote attackers to obtain sensitive information about COVID-19 tracking because requests related to Check-In State occur shortly after requests for Phone Number Registration.

7.5CVSS7.2AI score0.02132EPSS

CVE•added 2021/06/04 12:15 a.m.•68 views

CVE-2021-33839

Luca through 1.7.4 on Android allows remote attackers to obtain sensitive information about COVID-19 tracking because the QR code of a Public Location can be intentionally confused with the QR code of a Private Meeting.

7.5CVSS7.3AI score0.02088EPSS