Vulnerabilities > MI > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-08-02 CVE-2023-26316 Cross-site Scripting vulnerability in MI Xiaomi Cloud 1.12.0.0.21/1.12.0.0.25
A XSS vulnerability exists in the Xiaomi cloud service Application product.
network
low complexity
mi CWE-79
6.1
2022-06-16 CVE-2022-31277 Authentication Bypass by Capture-replay vulnerability in MI Xiaomi Lamp 1 Firmware 2.0.40066
Xiaomi Lamp 1 v2.0.4_0066 was discovered to be vulnerable to replay attacks.
low complexity
mi CWE-294
5.8
2022-06-08 CVE-2020-14125 Out-of-bounds Write vulnerability in MI Miui 2020.01.15
A denial of service vulnerability exists in some Xiaomi models of phones.
network
low complexity
mi CWE-787
5.0
2022-04-22 CVE-2020-14123 Double Free vulnerability in MI Miui 12.5.2
There is a pointer double free vulnerability in Some MIUI Services.
network
low complexity
mi CWE-415
5.0
2022-04-21 CVE-2020-14116 Insufficient Verification of Data Authenticity vulnerability in MI Browser
An intent redirection vulnerability in the Mi Browser product.
network
low complexity
mi CWE-345
5.0
2022-04-21 CVE-2020-14117 Unspecified vulnerability in MI Content Center
A improper permission configuration vulnerability in Xiaomi Content Center APP.
network
low complexity
mi
5.0
2022-04-21 CVE-2020-14118 Open Redirect vulnerability in MI APP Store
An intent redirection vulnerability in the Mi App Store product.
network
mi CWE-601
5.8
2022-04-21 CVE-2020-14120 Improper Validation of Integrity Check Value vulnerability in MI Miui 12.5
Some Xiaomi models have a vulnerability in a certain application.
network
mi CWE-354
6.8
2022-03-10 CVE-2020-14112 Information Exposure vulnerability in MI Ax6000 Firmware
Information Leak Vulnerability exists in the Xiaomi Router AX6000.
network
low complexity
mi CWE-200
5.0
2022-01-18 CVE-2020-14107 Out-of-bounds Write vulnerability in MI Xiaomi Mirror Screen
A stack overflow in the HTTP server of Cast can be exploited to make the app crash in LAN.
network
low complexity
mi CWE-787
5.0