PT-2022-8549 · Xiaomi · Xiaomi Smarthome App

Published

2022-07-22

Updated

2022-07-28

CVE-2020-14114

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Xiaomi SmartHome APP (affected versions not specified)

Description The issue is caused by illegal calls of some sensitive JS interfaces, which can be exploited by attackers to leak sensitive information.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2020-14114

Affected Products

Xiaomi Smarthome App

PT-2022-8549 · Xiaomi · Xiaomi Smarthome App

CVE-2020-14114

Related Identifiers

Affected Products

References · 4