An attacker could prematurely expire a verification code, making it unusable by the patient, making the patient unable to upload their TEKs to generate exposure notifications. We recommend upgrading the Exposure Notification server to V1.1.2 or greater.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: Google
Published: 2021-12-09T12:55:10.778079Z
Updated: 2024-09-16T17:53:56.557Z
Reserved: 2021-01-05T00:00:00
Link: CVE-2021-22565
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2021-12-09T13:15:08.767
Modified: 2022-10-25T16:20:42.343
Link: CVE-2021-22565
Redhat
No data.