NVD Vulnerability Detail

CVE-2020-24722

Summary	An issue was discovered in the GAEN (aka Google/Apple Exposure Notifications) protocol through 2020-10-05, as used in COVID-19 applications on Android and iOS. The encrypted metadata block with a TX value lacks a checksum, allowing bitflipping to amplify a contamination attack. This can cause metadata deanonymization and risk-score inflation. NOTE: the vendor's position is "We do not believe that TX power authentication would be a useful defense against relay attacks.
Publication Date	Oct. 8, 2020, 12:15 a.m.
Registration Date	Jan. 26, 2021, 11:55 a.m.
Last Update	Nov. 21, 2024, 2:15 p.m.

Affected software configurations

Configuration1	or higher	or less	more than	less than
cpe:2.3:a:exposure_notifications_project:exposure_notifications::::::android::*		2020-10-05
cpe:2.3:a:exposure_notifications_project:exposure_notifications::::::iphone_os::*		2020-10-05

Related information, measures and tools

No	URL	タグ
1	http://packetstormsecurity.com/files/159496/GAEN-Protocol-Metadata-Deanonymization-Risk-Score-Inflation.html	Exploit Third Party Advisory VDB Entry
2	http://packetstormsecurity.com/files/159496/GAEN-Protocol-Metadata-Deanonymization-Risk-Score-Inflation.html	Exploit Third Party Advisory VDB Entry
3	http://seclists.org/fulldisclosure/2020/Oct/12	Exploit Mailing List Third Party Advisory
4	http://seclists.org/fulldisclosure/2020/Oct/12	Exploit Mailing List Third Party Advisory
5	https://blog.google/inside-google/company-announcements/update-exposure-notifications	Third Party Advisory
6	https://blog.google/inside-google/company-announcements/update-exposure-notifications	Third Party Advisory
7	https://github.com/google/exposure-notifications-internals/blob/main/en-risks-and-mitigations-faq.md#additional-considerations	Third Party Advisory
8	https://github.com/google/exposure-notifications-internals/blob/main/en-risks-and-mitigations-faq.md#additional-considerations	Third Party Advisory

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-294	Capture-replayによる認証回避	https://cwe.mitre.org/data/definitions/294.html

JVN Vulnerability Information

GAEN プロトコルにおける Capture-replay による認証回避に関する脆弱性

Title	GAEN プロトコルにおける Capture-replay による認証回避に関する脆弱性
Summary	未確定本件は、脆弱性として確定していません。 GAEN (別名 Google/Apple Exposure Notifications) プロトコルには、Capture-replay による認証回避に関する脆弱性が存在します。ベンダは、本脆弱性に対して異議を唱えています。詳細については、以下の NVD の Current Description を確認してください。 https://nvd.nist.gov/vuln/detail/CVE-2020-24722
Possible impacts	情報を改ざんされる可能性があります。
Solution	ベンダ情報および参考情報を参照して適切な対策を実施してください。
Publication Date	Oct. 2, 2020, midnight
Registration Date	May 11, 2021, 5:19 p.m.
Last Update	May 11, 2021, 5:19 p.m.

Affected System

Exposure Notification project

Exposure Notification 2020/10/05 まで

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2020-24722	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-24722
National Vulnerability Database (NVD)
2	CVE-2020-24722	https://nvd.nist.gov/vuln/detail/CVE-2020-24722

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-294	https://cwe.mitre.org/data/definitions/294.html

ベンダー情報

No	Name	URL
GitHub
1	Exposure Notification: Risks and Mitigations FAQ	https://github.com/google/exposure-notifications-internals/blob/main/en-risks-and-mitigations-faq.md#additional-considerations

Change Log

No	Changed Details	Date of change
1	[2021年05月11日] 掲載	May 11, 2021, 5:19 p.m.