CVE-2024-45346: GetApps application has code execution vulnerability
First published: Wed Aug 28 2024(Updated: )
A code execution vulnerability exists in the XiaomiGetApps application product. This vulnerability is caused by the verification logic being bypassed, and an attacker can exploit this vulnerability to execute malicious code.
Credit: security@xiaomi.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Xiaomi GetApps |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2024-45346?
The severity of CVE-2024-45346 is categorized as critical due to the potential for remote code execution.
How do I fix CVE-2024-45346?
To fix CVE-2024-45346, users should update the Xiaomi GetApps application to the latest version provided by Xiaomi that addresses this vulnerability.
What systems are affected by CVE-2024-45346?
CVE-2024-45346 affects the Xiaomi GetApps application, potentially impacting devices running this software.
What kind of attack can exploit CVE-2024-45346?
CVE-2024-45346 can be exploited to execute arbitrary code on the affected device, leading to unauthorized control.
Who should be concerned about CVE-2024-45346?
Users of Xiaomi devices that utilize the Xiaomi GetApps application should be aware and take action to mitigate the risks posed by CVE-2024-45346.
- agent/references
- agent/first-publish-date
- agent/type
- agent/severity
- agent/author
- agent/title
- agent/description
- agent/event
- agent/source
- agent/weakness
- collector/nvd-api
- source/NVD
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/softwarecombine
- agent/tags
- agent/guess-ai
- agent/software-canonical-lookup
- vendor/xiaomi
- canonical/xiaomi getapps