CVE-2020-14126

Published: Jul 22, 2022Modified: Nov 21, 2024

7.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

Information leakage vulnerability exists in the Mi Sound APP. This vulnerability is caused by illegal calls of some sensitive JS interfaces, which can be exploited by attackers to leak sensitive information.

Affected (1)

Products: Mi: Sound

1 product

Sound

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Mi Sound	Up to 2.2.40

References (2)

https://trust.mi.com/zh-CN/misrc/bulletins/advisory?cveId=278

Source: security@xiaomi.com

Vendor Advisory

https://trust.mi.com/zh-CN/misrc/bulletins/advisory?cveId=278

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.