COVIDSafe through v1.0.17 allows a remote malicious user to access phone name and model information because a BLE device can have four roles and COVIDSafe uses all of them. This allows for re-identification of a device, and potentially identification of the owner's name.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
health covidsafe - |
||
health covidsafe |