Vulnerability Details CVE-2020-14292
In the COVIDSafe application through 1.0.21 for Android, unsafe use of the Bluetooth transport option in the GATT connection allows attackers to trick the application into establishing a connection over Bluetooth BR/EDR transport, which reveals the public Bluetooth address of the victim's phone without authorisation, bypassing the Bluetooth address randomisation protection in the user's phone.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 49.1%
CVSS Severity
CVSS v3 Score 5.7
CVSS v2 Score 2.9
References
- https://covidsafe.watch/issue-register/
- https://github.com/AU-COVIDSafe/mobile-android/blob/b827cf3ccef72a3d38c6fc37466a99868823540f/app/src/main/java/au/gov/health/covidsafe/streetpass/Work.kt#L35-L41
- https://github.com/alwentiu/CVE-2020-14292
- https://www.health.gov.au/resources/apps-and-tools/covidsafe-app
- https://covidsafe.watch/issue-register/
- https://github.com/AU-COVIDSafe/mobile-android/blob/b827cf3ccef72a3d38c6fc37466a99868823540f/app/src/main/java/au/gov/health/covidsafe/streetpass/Work.kt#L35-L41
- https://github.com/alwentiu/CVE-2020-14292
- https://www.health.gov.au/resources/apps-and-tools/covidsafe-app
Products affected by CVE-2020-14292
-
cpe:2.3:a:health:covidsafe:-
-
cpe:2.3:a:health:covidsafe:1.0.11
-
cpe:2.3:a:health:covidsafe:1.0.16
-
cpe:2.3:a:health:covidsafe:1.0.17
-
cpe:2.3:a:health:covidsafe:1.0.21