CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-18698

An issue was discovered on Xiaomi Mi A1 tissot_sprout:8.1.0/OPM1.171019.026/V9.6.4.0.ODHMIFE devices. They store cleartext Wi-Fi passwords in logcat during the process of setting up the phone as a hotspot.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 53.2%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 5.0

References

https://github.com/0x5h1v4m/CVE-ID-s/blob/master/CVE-2018-18698/MI%20A1.txt
https://github.com/0x5h1v4m/CVE-ID-s/blob/master/CVE-2018-18698/MI%20A1.txt

Products affected by CVE-2018-18698

Mi » Xiaomi Mi-A1 » Version: N/A

cpe:2.3:h:mi:xiaomi_mi-a1:-
Mi » Xiaomi Mi-A1 Firmware » Version: N/A

cpe:2.3:o:mi:xiaomi_mi-a1_firmware:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-18698

Products

Pricing

Contact Us