CVE-2021-37786

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2021-37786

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-37786.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2021-37786

Published

2021-09-27T14:15:08Z

Modified

2025-01-08T08:13:08.926444Z

Severity

4.6 (Medium) CVSS_V3 - CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Summary

[none]

Details

Certain Federal Office of Information Technology Systems and Telecommunication FOITT products are affected by improper handling of exceptional conditions. This affects COVID Certificate App IOS 2.2.0 and below affected, patch in progress and COVID Certificate Check App IOS 2.2.0 and below affected, patch in progress. A denial of service (physically proximate) could be caused by scanning a crafted QR code.

References

https://github.com/admin-ch/CovidCertificate-App-iOS/issues/146

Affected packages

Git / github.com/admin-ch/covidcertificate-app-ios

Affected ranges

Type: GIT
Repo: https://github.com/admin-ch/covidcertificate-app-ios
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Last affected

34c0a1313a011ac2d254f3a48ba86dd810b68eb2

Affected versions

v1.*

v1.2.0-210616.1501.9965-verifier

v1.2.0-210616.1501.9965-wallet

v2.*

v2.0.0-210625.1721.9981-verifier

v2.0.0-210625.1721.9981-wallet

v2.1.0-210708.1517.9996-verifier

v2.1.0-210708.1517.9996-wallet

v2.2.0-210722.123.7-verifier

v2.2.0-210722.123.7-wallet