How severe is CVE-2020-14292?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 5.7 out of 10.

What type of vulnerability is CVE-2020-14292?

This is classified as NVD-CWE-Other, which is a common weakness in software security.

CVE-2020-14292

MEDIUM Year: 2020

CVSS v3 Score

5.7

Medium

CVSS v2 Score

2.9

Low

Weakness Type

NVD-CWE-Other

View all →

Vulnerability Description

In the COVIDSafe application through 1.0.21 for Android, unsafe use of the Bluetooth transport option in the GATT connection allows attackers to trick the application into establishing a connection over Bluetooth BR/EDR transport, which reveals the public Bluetooth address of the victim's phone without authorisation, bypassing the Bluetooth address randomisation protection in the user's phone.

CVE-2016-3464

MEDIUM

CVSS:5.7(Medium)

Unspecified vulnerability in the Oracle FLEXCUBE Direct Banking component in Oracle Financial Services Software 12.0.3 allows remote authenticated users to affect confidentiality via vectors related t...

NVD-CWE-Other2016

CVE-2016-3472

MEDIUM

CVSS:5.7(Medium)

Unspecified vulnerability in the Siebel Engineering - Installer and Deployment component in Oracle Siebel CRM 8.1.1, 8.2.2, IP2014, IP2015, and IP2016 allows remote authenticated users to affect confi...

NVD-CWE-Other2016

CVE-2016-5537

MEDIUM

CVSS:5.7(Medium)

Unspecified vulnerability in the NetBeans component in Oracle Fusion Middleware 8.1 allows local users to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous in...

NVD-CWE-Other2016

CVE-2017-10051

MEDIUM

CVSS:5.7(Medium)

Vulnerability in the Oracle Outside In Technology component of Oracle Fusion Middleware (subcomponent: Outside In Filters). The supported version that is affected is 8.5.3.0. Easily exploitable vulner...

NVD-CWE-Other2017

CVE-2017-10389

MEDIUM

CVSS:5.7(Medium)

Vulnerability in the Oracle Hospitality Suite8 component of Oracle Hospitality Applications (subcomponent: PMS). Supported versions that are affected are 8.10.1 and 8.10.2. Easily exploitable vulnerab...

NVD-CWE-Other2017

CVE-2017-3276

MEDIUM

CVSS:5.7(Medium)

Vulnerability in the Solaris component of Oracle Sun Systems Products Suite (subcomponent: Kernel Zones virtualized block driver). The supported version that is affected is 11.3. Difficult to exploit ...

NVD-CWE-Other2017

CVE-2020-14292

Vulnerability Description

Related Vulnerabilities

CVE-2016-3464

CVE-2016-3472

CVE-2016-5537

CVE-2017-10051

CVE-2017-10389

CVE-2017-3276