Vulnerabilities > Health > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2020-05-18 | CVE-2020-12858 | Use of Insufficiently Random Values vulnerability in Health Covidsafe 1.0.11/1.0.16/1.0.17 Non-reinitialisation of random data in the advertising payload in COVIDSafe v1.0.15 and v1.0.16 allows a remote attacker to re-identify Android devices running COVIDSafe by scanning for their advertising beacons. | 7.5 |
2020-05-18 | CVE-2020-12857 | Incomplete Cleanup vulnerability in Health Covidsafe 1.0.11/1.0.16/1.0.17 Caching of GATT characteristic values (TempID) in COVIDSafe v1.0.15 and v1.0.16 allows a remote attacker to long-term re-identify an Android device running COVIDSafe. | 7.5 |