CVE-2020-14126
First published: Fri Jul 22 2022(Updated: )
Information leakage vulnerability exists in the Mi Sound APP. This vulnerability is caused by illegal calls of some sensitive JS interfaces, which can be exploited by attackers to leak sensitive information.
Credit: security@xiaomi.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Mi Sound | <=2.2.40 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID of this information leakage vulnerability?
The vulnerability ID of this information leakage vulnerability is CVE-2020-14126.
What is the affected software?
The affected software is Mi Sound APP version up to and including 2.2.40.
How severe is CVE-2020-14126?
CVE-2020-14126 has a severity score of 7.5, which is considered high.
What is the cause of this vulnerability?
This vulnerability is caused by illegal calls of some sensitive JS interfaces in the Mi Sound APP.
Can this vulnerability be exploited to leak sensitive information?
Yes, attackers can exploit this vulnerability to leak sensitive information.
- collector/nvd-index
- agent/references
- agent/severity
- agent/author
- agent/tags
- agent/type
- agent/event
- agent/description
- agent/last-modified-date
- agent/first-publish-date
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- vendor/mi
- canonical/mi sound
- version/mi sound/2.2.40