Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In the COVIDSafe application through 1.0.21 for Android, unsafe use of the Bluetooth transport option in the GATT connection allows attackers to trick the application into establishing a connection over Bluetooth BR/EDR transport, which reveals the public Bluetooth address of the victim's phone without authorisation, bypassing the Bluetooth address randomisation protection in the user's phone.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Android 安全漏洞
Vulnerability Description
Android是美国谷歌(Google)和开放手持设备联盟(简称OHA)的一套以Linux为基础的开源操作系统。Bluetooth BR/EDR是美国谷歌(Google)和开放手持设备联盟(简称OHA)一种蓝牙BR/EDR(基本速率/增强数据速率)标准。COVIDSafe app是美国谷歌(Google)和开放手持设备联盟(简称OHA)一款冠状病毒接触者追踪应用程序。 Android的1.0.21之前的COVIDSafe存在安全漏洞。攻击者可利用该漏洞以诱骗该应用程序通过蓝牙BR / EDR传输建立连接。
CVSS Information
N/A
Vulnerability Type
N/A