Google Exposure Notifications Verification Server
By the Year
In 2023 there have been 0 vulnerabilities in Google Exposure Notifications Verification Server . Exposure Notifications Verification Server did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2023 | 0 | 0.00 |
| 2022 | 0 | 0.00 |
| 2021 | 1 | 8.80 |
| 2020 | 0 | 0.00 |
| 2019 | 0 | 0.00 |
| 2018 | 0 | 0.00 |
It may take a day or so for new Exposure Notifications Verification Server vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Google Exposure Notifications Verification Server Security Vulnerabilities
A privilege escalation vulnerability impacting the Google Exposure Notification Verification Server (versions prior to 0.23.1)
CVE-2021-22538
8.8 - High
- March 31, 2021
A privilege escalation vulnerability impacting the Google Exposure Notification Verification Server (versions prior to 0.23.1), allows an attacker who (1) has UserWrite permissions and (2) is using a carefully crafted request or malicious proxy, to create another user with higher privileges than their own. This occurs due to insufficient checks on the allowed set of permissions. The new user creation event would be captured in the Event Log.
Incorrect Default Permissions
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Google Exposure Notifications Verification Server or by Google? Click the Watch button to subscribe.
