3 matches found
Unspecified Vulnerability in XIAOMI AI speaker MDZ-25-DT
Xiaomi AI speaker MDZ-25-DT is a smart speaker device from Chinese company Xiaomi Technology Xiaomi. A security vulnerability exists in XIAOMI AI speaker MDZ-25-DT version 1.34.36 and 1.40.14. An attacker can exploit this vulnerability by sending a UART interface to obtain a root shell, read the...
CVE-2020-8994
An issue was discovered on XIAOMI AI speaker MDZ-25-DT 1.34.36, and 1.40.14. Attackers can get root shell by accessing the UART interface and then they can read Wi-Fi SSID or password, read the dialogue text files between users and XIAOMI AI speaker, use Text-To-Speech tools pretend XIAOMI...
CVE-2020-8994
The CVE-2020-8994 entry concerns Xiaomi AI Speaker MDZ-25-DT (firmware versions 1.34.36 and 1.40.14). A physical-access flaw allows an attacker to obtain a root shell by interfacing with UART, enabling reading of the Wi‑Fi SSID/password and dialogue text files, and using Text‑To‑Speech to imperso...