Vulnerability CVE-2020-14292


Published: 2020-09-09

Description:
In the COVIDSafe application through 1.0.21 for Android, unsafe use of the Bluetooth transport option in the GATT connection allows attackers to trick the application into establishing a connection over Bluetooth BR/EDR transport, which reveals the public Bluetooth address of the victim's phone without authorisation, bypassing the Bluetooth address randomisation protection in the user's phone.

Type:

CWE-863

(Incorrect Authorization)

CVSS2 => (AV:A/AC:M/Au:N/C:P/I:N/A:N)

CVSS Base Score
Impact Subscore
Exploitability Subscore
2.9/10
2.9/10
5.5/10
Exploit range
Attack complexity
Authentication
Adjacent network
Medium
No required
Confidentiality impact
Integrity impact
Availability impact
Partial
None
None
Affected software
Health -> Covidsafe 

 References:
https://covidsafe.watch/issue-register/
https://github.com/alwentiu/CVE-2020-14292
https://github.com/AU-COVIDSafe/mobile-android/blob/b827cf3ccef72a3d38c6fc37466a99868823540f/app/src/main/java/au/gov/health/covidsafe/streetpass/Work.kt#L35-L41
https://www.health.gov.au/resources/apps-and-tools/covidsafe-app

Copyright 2024, cxsecurity.com

 

Back to Top