PT-2020-12012 · Xiaomi · Xiaomi Xiaoai Speaker Pro Lx06
Guan-Wei Hou
+3
·
Published
2020-04-08
·
Updated
2021-07-21
·
CVE-2020-10263
CVSS v2.0
7.2
High
| Vector | AV:L/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
XIAOMI XIAOAI speaker Pro LX06 version 1.52.4
Description
An issue was discovered that allows attackers to gain root shell access by accessing the UART interface. This access enables various malicious activities, including:
- reading Wi-Fi SSID or password,
- reading dialogue text files between users and the device,
- using Text-To-Speech tools to pretend to be the device's voice for social engineering attacks,
- eavesdropping on users and recording what the device hears,
- modifying system files,
- sending any IR code through the IR emitter,
- stopping the voice assistant service,
- enabling the device's SSH or TELNET service as a backdoor,
- tampering with the router configuration in local area networks.
Recommendations
For XIAOMI XIAOAI speaker Pro LX06 version 1.52.4, as a temporary workaround, consider restricting physical access to the UART interface until a patch is available. Additionally, restrict access to the device's network to minimize the risk of exploitation. Avoid using the device's Text-To-Speech functionality and IR emitter until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
Missing Authentication
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Xiaomi Xiaoai Speaker Pro Lx06