CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-14121

A business logic vulnerability exists in Mi App Store. The vulnerability is caused by incomplete permission checks of the products being bypassed, and an attacker can exploit the vulnerability to perform a local silent installation.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 14.5%

CVSS Severity

CVSS v3 Score 5.5

CVSS v2 Score 2.1

References

https://trust.mi.com/zh-CN/misrc/bulletins/advisory?cveId=146
https://trust.mi.com/zh-CN/misrc/bulletins/advisory?cveId=146

Products affected by CVE-2020-14121

Mi » Mi App Store » Version: 4.12.2

cpe:2.3:a:mi:mi_app_store:4.12.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-14121

Products

Pricing

Contact Us