PT-2018-13478 · Xiaomi · Miwifi

Published

2018-09-05

Updated

2018-11-14

CVE-2018-16307

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Xiaomi MIWiFi Xiaomi 55DD version 2.8.50

Description An issue was discovered that allows the application to retrieve the contents of an arbitrary external URL and return those contents in its own response. This can be achieved by using a domain name containing a random string in the HTTP Host header, causing the application to perform an HTTP request to the specified domain and include the response in its own response.

Recommendations For version 2.8.50, as a temporary workaround, consider restricting access to external URLs to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

Exploit

Fix

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

CVE-2018-16307

Affected Products

Miwifi

PT-2018-13478 · Xiaomi · Miwifi

CVE-2018-16307

Weakness Enumeration

Related Identifiers

Affected Products

References · 3