CVE-2020-12860

Published: 2020-05-18T05:15Z

Last Modified: 2024-11-21T05:00Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

COVIDSafe through v1.0.17 allows a remote attacker to access phone name and model information because a BLE device can have four roles and COVIDSafe uses all of them. This allows for re-identification of a device, and potentially identification of the owner's name. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt