CVE-2024-45354

Summary

A code execution vulnerability exists in the Xiaomi shop applicationproduct. The vulnerability is caused by improper input validation and can be exploited by attackers to execute malicious code.

Affected Software

VendorProductVersion RangeStatus
XiaomiXiaomi shop applicationXiaomi shop application 5.30.0.20241103.r1affected

Weaknesses

  • CWE-346: CWE-346 Origin Validation Error

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References