Vulnerabilities > Health > High

DATE CVE VULNERABILITY TITLE RISK
2020-05-18 CVE-2020-12858 Use of Insufficiently Random Values vulnerability in Health Covidsafe 1.0.11/1.0.16/1.0.17
Non-reinitialisation of random data in the advertising payload in COVIDSafe v1.0.15 and v1.0.16 allows a remote attacker to re-identify Android devices running COVIDSafe by scanning for their advertising beacons.
network
low complexity
health CWE-330
7.5
2020-05-18 CVE-2020-12857 Incomplete Cleanup vulnerability in Health Covidsafe 1.0.11/1.0.16/1.0.17
Caching of GATT characteristic values (TempID) in COVIDSafe v1.0.15 and v1.0.16 allows a remote attacker to long-term re-identify an Android device running COVIDSafe.
network
low complexity
health CWE-459
7.5