7 matches found
EUVD-2019-2598
Malware in sbrugna...
CVE-2019-10875
A URL spoofing vulnerability was found in all international versions of Xiaomi Mi browser 10.5.6-g aka the MIUI native browser and Mint Browser 1.5.3 due to the way they handle the "q" query parameter. The portion of an https URL before the ?q= substring is not shown to the user...
PT-2022-23609 · Xiaomi · Xiaomi Mi Browser
Name of the Vulnerable Software and Affected Versions: Xaomi Mi Browser version 13.10.0-gn Description: The issue allows attackers to execute arbitrary code via user interaction with a crafted URL. Recommendations: For Xaomi Mi Browser version 13.10.0-gn, at the moment, there is no information...
Xiaomi Mi Browser open redirection vulnerability
Xiaomi Mi browser is a lightweight web browser from Xiaomi Technology China, Inc. A security vulnerability exists prior to Xiaomi Mi Browser 15.8, which is caused by Xiaomi Mi browser not validating the validity of incoming data. An attacker could exploit this vulnerability to perform sensitive...
Xiaomi Mi browser and Xiaomi Mint Browser input validation error vulnerability
Xiaomi Mi browser and Xiaomi Mint Browser are both lightweight web browsers from the Chinese company Xiaomi Technology Xiaomi. An input validation error vulnerability exists in Xiaomi Mi browser and Xiaomi Mint Browser, which arises from a network system or product that does not properly validate...
Spoofing
A URL spoofing vulnerability was found in all international versions of Xiaomi Mi browser 10.5.6-g aka the MIUI native browser and Mint Browser 1.5.3 due to the way they handle the "q" query parameter. The portion of an https URL before the ?q= substring is not shown to the user...
CVE-2019-10875
CVE-2019-10875 is a URL-spoofing vulnerability in Xiaomi Mi Browser (international) 10.5.6-g and Mint Browser 1.5.3 caused by how the q parameter is handled: the portion of the https URL before ?q= is not displayed, enabling spoofing of the address bar. Several public sources document a PoC and p...