CVE-2020-14120

Summary

Some Xiaomi models have a vulnerability in a certain application. The vulnerability is caused by the lack of checksum when using a three-party application to pass in parameters, and attackers can induce users to install a malicious app and use the vulnerability to achieve elevated privileges, making the normal services of the system affected.

Affected Software

VendorProductVersion RangeStatus
n/aMIUIMIUI version 12.5affected

Weaknesses

  • Permission bypass

ADP Enrichment

CVE Program Container

Additional References

References