3 matches found
CVE-2020-8994
creationtimestamp| type| source ---|---|--- 2025-03-09 12:40:23+00:00| seen| https://bsky.app/profile/perillamint.social.silicon.moe.ap.brid.gy/post/3ljx2obh3j4w2...
CVE-2020-8994
An issue was discovered on XIAOMI AI speaker MDZ-25-DT 1.34.36, and 1.40.14. Attackers can get root shell by accessing the UART interface and then they can read Wi-Fi SSID or password, read the dialogue text files between users and XIAOMI AI speaker, use Text-To-Speech tools pretend XIAOMI...
CVE-2020-8994
The CVE-2020-8994 entry concerns Xiaomi AI Speaker MDZ-25-DT (firmware versions 1.34.36 and 1.40.14). A physical-access flaw allows an attacker to obtain a root shell by interfacing with UART, enabling reading of the Wi‑Fi SSID/password and dialogue text files, and using Text‑To‑Speech to imperso...