Government Of Alberta · Abtracetogether · CVE-2020-12856
**Name of the Vulnerable Software and Affected Versions**
OpenTrace versions prior to 1.0.18
COVIDSafe versions prior to 1.0.18
TraceTogether versions prior to 1.0.18
ABTraceTogether versions prior to 1.0.18
**Description**
The issue allows remote attackers to conduct long-term re-identification attacks and possibly have unspecified other impact, because of how Bluetooth is used.
**Recommendations**
For OpenTrace version 1.0.17 and earlier, update to version 1.0.18 or later.
For COVIDSafe version 1.0.17 and earlier, update to version 1.0.18 or later.
For TraceTogether version 1.0.17 and earlier, update to version 1.0.18 or later.
For ABTraceTogether version 1.0.17 and earlier, update to version 1.0.18 or later.