Medium severity5.7NVD Advisory· Published Sep 30, 2020· Updated Jun 17, 2026
CVE-2020-24721
CVE-2020-24721
Description
An issue was discovered in the GAEN (aka Google/Apple Exposure Notifications) protocol through 2020-09-29, as used in COVID-19 applications on Android and iOS. It allows a user to be put in a position where he or she can be coerced into proving or disproving an exposure notification, because of the persistent state of a private framework.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Google/Apple/Exposure Notificationsdescription
Patches
Vulnerability mechanics
References
4- packetstormsecurity.com/files/159419/Corona-Exposure-Notifications-API-Data-Leakage.htmlnvdThird Party AdvisoryVDB Entry
- blog.google/inside-google/company-announcements/update-exposure-notificationsnvdVendor Advisory
- github.com/minvws/nl-covid19-notification-app-coordination/blob/master/CVEs/CVE-2020-24721.txtnvdThird Party Advisory
- seclists.org/fulldisclosure/2020/Sep/53nvdMailing ListThird Party Advisory
News mentions
0No linked articles in our index yet.