The Rolling Proximity Identifier Project: >> The Rolling Proximity Identifier Security Vulnerabilities
The Rolling Proximity Identifier used in the Apple/Google Exposure Notification API beta through 2020-05-29 enables attackers to circumvent Bluetooth Smart Privacy because there is a secondary temporary UID. An attacker with access to Beacon or IoT networks can seamlessly track individual device movement via a Bluetooth LE discovery mechanism.
CVSS Score
4.3
EPSS Score
0.005
Published
2020-06-11