CVE-2020-12860 allows remote attackers to access phone name and model information via COVIDSafe app, risking device re-identification and owner's name exposure. Learn about the impact and mitigation steps.
COVIDSafe through v1.0.17 allows a remote attacker to access phone name and model information due to the use of all four roles of a BLE device, potentially leading to device re-identification and owner's name exposure.
Understanding CVE-2020-12860
COVIDSafe app vulnerability impacting user privacy and device identification.
What is CVE-2020-12860?
COVIDSafe app vulnerability allows remote attackers to access phone name and model information, compromising user privacy.
The Impact of CVE-2020-12860
Technical Details of CVE-2020-12860
COVIDSafe app vulnerability details.
Vulnerability Description
Affected Systems and Versions
Exploitation Mechanism
Mitigation and Prevention
Protecting against CVE-2020-12860.
Immediate Steps to Take
Long-Term Security Practices
Patching and Updates