Impact
A security researcher discovered it was possible to cause the iOS version of COVIDSafe to crash on another user's device without any user interaction required. As the crash caused the COVIDSafe app to close, the impact on users was a Denial of Service targeting the use of the COVIDSafe app.
This was achieved by sending a modified Bluetooth message that caused an unhandled exception in the app when it attempted to process the encounter, due to an assumption in the COVIDSafe code on the minimum amount of bytes that should be present in the 'company identifier code' component of the manufacturer data.
Patches
This issue was fixed in COVIDSafe v1.2 for iOS.
References
https://nvd.nist.gov/vuln/detail/CVE-2020-12717
https://medium.com/@wabz/covidsafe-ios-vulnerability-cve-2020-12717-30dc003f9708
Impact
A security researcher discovered it was possible to cause the iOS version of COVIDSafe to crash on another user's device without any user interaction required. As the crash caused the COVIDSafe app to close, the impact on users was a Denial of Service targeting the use of the COVIDSafe app.
This was achieved by sending a modified Bluetooth message that caused an unhandled exception in the app when it attempted to process the encounter, due to an assumption in the COVIDSafe code on the minimum amount of bytes that should be present in the 'company identifier code' component of the manufacturer data.
Patches
This issue was fixed in COVIDSafe v1.2 for iOS.
References
https://nvd.nist.gov/vuln/detail/CVE-2020-12717
https://medium.com/@wabz/covidsafe-ios-vulnerability-cve-2020-12717-30dc003f9708