This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Mi First view 2021-04-08
Product Miui Last view 2022-07-14
Version Type Os
Update  
Edition  
Language  
Sofware Edition  
Target Software  
Target Hardware  
Other  

Activity : Overall

COMMON PLATFORM ENUMERATION: Repartition per Version

CPE Name Affected CVE
cpe:2.3:o:mi:miui:12.5.2:*:*:*:*:*:*:* 7
cpe:2.3:o:mi:miui:12.5:*:*:*:*:*:*:* 6
cpe:2.3:o:mi:miui:*:*:*:*:*:*:*:* 5

Related : CVE

  Date Alert Description
7.5 2022-07-14 CVE-2020-14127

A denial of service vulnerability exists in some Xiaomi models of phones. The vulnerability is caused by heap overflow and can be exploited by attackers to make remote denial of service.

7.5 2022-06-08 CVE-2020-14125

A denial of service vulnerability exists in some Xiaomi models of phones. The vulnerability is caused by out-of-bound read/write and can be exploited by attackers to make denial of service.

7.5 2022-04-22 CVE-2020-14123

There is a pointer double free vulnerability in Some MIUI Services. When a function is called, the memory pointer is copied to two function modules, and an attacker can cause the pointer to be repeatedly released through malicious operations, resulting in the affected module crashing and affecting normal functionality, and if successfully exploited the vulnerability can cause elevation of privileges.

5.5 2022-04-21 CVE-2020-14122

Some Xiaomi phones have information leakage vulnerabilities, and some of them may be able to forge a specific identity due to the lack of parameter verification, resulting in user information leakage.

8.8 2022-04-21 CVE-2020-14120

Some Xiaomi models have a vulnerability in a certain application. The vulnerability is caused by the lack of checksum when using a three-party application to pass in parameters, and attackers can induce users to install a malicious app and use the vulnerability to achieve elevated privileges, making the normal services of the system affected.

5.5 2021-04-20 CVE-2020-14105

The application in the mobile phone can read the SNO information of the device, Xiaomi 10 MIUI < 2020.01.15.

5.5 2021-04-08 CVE-2020-14106

The application in the mobile phone can unauthorized access to the list of running processes in the mobile phone, Xiaomi Mobile Phone MIUI < 2021.01.26.

5.5 2021-04-08 CVE-2020-14103

The application in the mobile phone can read the SNO information of the device, Xiaomi 10 MIUI < 2020.01.15.

CWE : Common Weakness Enumeration

%idName
33% (2) CWE-787 Out-of-bounds Write
16% (1) CWE-415 Double Free
16% (1) CWE-354 Improper Validation of Integrity Check Value
16% (1) CWE-345 Insufficient Verification of Data Authenticity
16% (1) CWE-125 Out-of-bounds Read