Vulnerabilities > MI

DATE CVE VULNERABILITY TITLE RISK
2022-06-16 CVE-2022-31277 Authentication Bypass by Capture-replay vulnerability in MI Xiaomi Lamp 1 Firmware 2.0.40066
Xiaomi Lamp 1 v2.0.4_0066 was discovered to be vulnerable to replay attacks.
low complexity
mi CWE-294
5.8
2022-06-08 CVE-2020-14125 Out-of-bounds Write vulnerability in MI Miui 2020.01.15
A denial of service vulnerability exists in some Xiaomi models of phones.
network
low complexity
mi CWE-787
5.0
2022-04-22 CVE-2020-14123 Double Free vulnerability in MI Miui 12.5.2
There is a pointer double free vulnerability in Some MIUI Services.
network
low complexity
mi CWE-415
5.0
2022-04-21 CVE-2020-14116 Insufficient Verification of Data Authenticity vulnerability in MI Browser
An intent redirection vulnerability in the Mi Browser product.
network
low complexity
mi CWE-345
5.0
2022-04-21 CVE-2020-14117 Unspecified vulnerability in MI Content Center
A improper permission configuration vulnerability in Xiaomi Content Center APP.
network
low complexity
mi
5.0
2022-04-21 CVE-2020-14118 Open Redirect vulnerability in MI APP Store
An intent redirection vulnerability in the Mi App Store product.
network
mi CWE-601
5.8
2022-04-21 CVE-2020-14120 Improper Validation of Integrity Check Value vulnerability in MI Miui 12.5
Some Xiaomi models have a vulnerability in a certain application.
network
mi CWE-354
6.8
2022-04-21 CVE-2020-14121 Incorrect Authorization vulnerability in MI APP Store 4.12.2
A business logic vulnerability exists in Mi App Store.
local
low complexity
mi CWE-863
2.1
2022-04-21 CVE-2020-14122 Insufficient Verification of Data Authenticity vulnerability in MI Miui 12.5.2
Some Xiaomi phones have information leakage vulnerabilities, and some of them may be able to forge a specific identity due to the lack of parameter verification, resulting in user information leakage.
local
low complexity
mi CWE-345
2.1
2022-03-10 CVE-2020-14111 Insufficient Verification of Data Authenticity vulnerability in MI Ax3600 Firmware 1.0.50/1.1.12
A command injection vulnerability exists in the Xiaomi Router AX3600.
local
low complexity
mi CWE-345
7.2