CVE-2024-45354

Medium CVSS: 4.3

A code execution vulnerability exists in the Xiaomi shop applicationproduct. The vulnerability is caused by improper input validation and can be exploited by attackers to execute malicious code.

Vendor

Product

CWE

CWE-346

Yayın Tarihi

2025-03-27 07:15:38

Güncelleme

2025-03-27 16:45:27

Source Identifier

security@xiaomi.com

KEV Date Added

Kategoriler

CWE-346 MEDIUM 2025

Referanslar

https://trust.mi.com/zh-CN/misrc/bulletins/advisory?cveId=552