2 matches found
CVE-2020-14121
The CVE-2020-14121 issue affects Xiaomi Mi App Store. Affected component: the store’s business logic with incomplete product permission checks, allowing bypass and a local silent installation. Root cause: insufficient permission enforcement enables an attacker to install without user-visible prom...
CVE-2020-14118
CVE-2020-14118 affects the Xiaomi Mi App Store. The issue is an intent redirection vulnerability caused by the app store not verifying incoming data, which can cause automatic download/installation of apps. Documents confirm the root cause and impact (open redirect-like behavior) but do not provi...