CVE-2020-14127

Published: Jul 14, 2022Modified: Nov 21, 2024

7.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

A denial of service vulnerability exists in some Xiaomi models of phones. The vulnerability is caused by heap overflow and can be exploited by attackers to make remote denial of service.

Affected (1)

Products: Mi: Miui

1 product

Miui

Configuration A

1 vulnerable · 2 platform

Vulnerable Software	Affected Versions
Mi Miui	Before 2022.07.01

Running on/with	Platform Versions
Mi Redmi K40	All versions
Mi Redmi Note 10 Pro	All versions

Related CWEs

CWE-787

Out-of-bounds Write

The product writes data past the end, or before the beginning, of the intended buffer.

References (2)

https://trust.mi.com/zh-CN/misrc/bulletins/advisory?cveId=169

Source: security@xiaomi.com

Vendor Advisory

https://trust.mi.com/zh-CN/misrc/bulletins/advisory?cveId=169

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.