CVE-2023-26324

Summary

A code execution vulnerability exists in the XiaomiGetApps application product. This vulnerability is caused by the verification logic being bypassed, and an attacker can exploit this vulnerability to execute malicious code.

Affected Software

VendorProductVersion RangeStatus
XiaomiGetApps applicationGetApps application <= 30.6.0.2affected

Weaknesses

  • A code execution vulnerability exists

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References