Vulnerabilities > CVE-2021-22565 - Unspecified vulnerability in Google Exposure Notification Verification Server

CVSS 6.5 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

LOW

Availability impact

LOW

network

low complexity

google

NVD

Published: 2021-12-09

Updated: 2022-10-25

Summary

An attacker could prematurely expire a verification code, making it unusable by the patient, making the patient unable to upload their TEKs to generate exposure notifications. We recommend upgrading the Exposure Notification server to V1.1.2 or greater.

Vulnerable Configurations

Part	Description	Count
Application	Google Google Exposure Notification Verification Server - Google Exposure Notification Verification Server 0.1 Google Exposure Notification Verification Server 0.2.0 Google Exposure Notification Verification Server 0.2.1 Google Exposure Notification Verification Server 0.3.0 Google Exposure Notification Verification Server 0.3.1 Google Exposure Notification Verification Server 0.3.2 Google Exposure Notification Verification Server 0.4.0 Google Exposure Notification Verification Server 0.5.0 Google Exposure Notification Verification Server 0.5.1 Google Exposure Notification Verification Server 0.6.0 Google Exposure Notification Verification Server 0.7.0 Google Exposure Notification Verification Server 0.8.0 Google Exposure Notification Verification Server 0.9.0 Google Exposure Notification Verification Server 0.10.0 Google Exposure Notification Verification Server 0.11.0 Google Exposure Notification Verification Server 0.11.1 Google Exposure Notification Verification Server 0.12.0 Google Exposure Notification Verification Server 0.12.1 Google Exposure Notification Verification Server 0.13.0 Google Exposure Notification Verification Server 0.14.0 Google Exposure Notification Verification Server 0.15.0 Google Exposure Notification Verification Server 0.15.1 Google Exposure Notification Verification Server 0.16.0 Google Exposure Notification Verification Server 0.16.1 Google Exposure Notification Verification Server 0.17.0 Google Exposure Notification Verification Server 0.17.1 Google Exposure Notification Verification Server 0.18.0 Google Exposure Notification Verification Server 0.18.1 Google Exposure Notification Verification Server 0.18.2 Google Exposure Notification Verification Server 0.18.3 Google Exposure Notification Verification Server 0.18.4 Google Exposure Notification Verification Server 0.18.5 Google Exposure Notification Verification Server 0.19.0 Google Exposure Notification Verification Server 0.19.1 Google Exposure Notification Verification Server 0.19.2 Google Exposure Notification Verification Server 0.20.0 Google Exposure Notification Verification Server 0.21.0 Google Exposure Notification Verification Server 0.21.1 Google Exposure Notification Verification Server 0.21.2 Google Exposure Notification Verification Server 0.22.0 Google Exposure Notification Verification Server 0.22.1 Google Exposure Notification Verification Server 0.22.2 Google Exposure Notification Verification Server 0.23.0 Google Exposure Notification Verification Server 0.23.1 Google Exposure Notification Verification Server 0.24.0 Google Exposure Notification Verification Server 0.25.0 Google Exposure Notification Verification Server 0.26.0 Google Exposure Notification Verification Server 0.26.1 Google Exposure Notification Verification Server 0.27.0 Google Exposure Notification Verification Server 0.28.0 Google Exposure Notification Verification Server 0.29.0 Google Exposure Notification Verification Server 0.30.0 Google Exposure Notification Verification Server 0.31.0 Google Exposure Notification Verification Server 0.32.0 Google Exposure Notification Verification Server 0.33.0 Google Exposure Notification Verification Server 0.33.1 Google Exposure Notification Verification Server 0.34.0 Google Exposure Notification Verification Server 0.34.1 Google Exposure Notification Verification Server 0.34.2 Google Exposure Notification Verification Server 0.35.0 Google Exposure Notification Verification Server 0.35.1 Google Exposure Notification Verification Server 0.35.2 Google Exposure Notification Verification Server 0.35.3 Google Exposure Notification Verification Server 0.35.4 Google Exposure Notification Verification Server 0.36.0 Google Exposure Notification Verification Server 0.36.1 Google Exposure Notification Verification Server 0.37.0 Google Exposure Notification Verification Server 1.0.0 Google Exposure Notification Verification Server 1.1.0 Google Exposure Notification Verification Server 1.1.1	71

Summary

Vulnerable Configurations

References