CVE-2020-14130
First published: Thu Sep 16 2021(Updated: )
Some js interfaces in the Xiaomi community were exposed, causing sensitive functions to be maliciously called on Xiaomi community app Affected Version <3.0.210809
Credit: security@xiaomi.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Mi Xiaomi | <3.0.210809 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID of this issue?
The vulnerability ID of this issue is CVE-2020-14130.
What is the severity of CVE-2020-14130?
The severity of CVE-2020-14130 is medium with a severity value of 5.3.
Which software versions are affected by CVE-2020-14130?
The software versions affected by CVE-2020-14130 are Xiaomi community app versions up to 3.0.210809.
What is the impact of CVE-2020-14130?
CVE-2020-14130 allows for sensitive functions to be maliciously called on Xiaomi community app.
How can I fix CVE-2020-14130?
To fix CVE-2020-14130, update your Xiaomi community app to a version beyond 3.0.210809.
- collector/nvd-index
- agent/references
- agent/severity
- agent/type
- agent/event
- agent/weakness
- agent/author
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/tags
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- vendor/mi
- canonical/mi xiaomi