๐ CVE-2020-14292
๐ก Newskategorie: Sicherheitslรผcken
๐ Quelle: web.nvd.nist.gov
In the COVIDSafe application through 1.0.21 for Android, unsafe use of the Bluetooth transport option in the GATT connection allows attackers to trick the application into establishing a connection over Bluetooth BR/EDR transport, which reveals the public Bluetooth address of the victim's phone without authorisation, bypassing the Bluetooth address randomisation protection in the user's phone. ...