CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0CVE-2023-26324 – GetApps application has code execution vulnerability
https://notcve.org/view.php?id=CVE-2023-26324
28 Aug 2024 — A code execution vulnerability exists in the XiaomiGetApps application product. This vulnerability is caused by the verification logic being bypassed, and an attacker can exploit this vulnerability to execute malicious code. • https://https://trust.mi.com/misrc/bulletins/advisory?cveId=544 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-45346 – GetApps application has code execution vulnerability
https://notcve.org/view.php?id=CVE-2024-45346
28 Aug 2024 — A code execution vulnerability exists in the XiaomiGetApps application product. This vulnerability is caused by the verification logic being bypassed, and an attacker can exploit this vulnerability to execute malicious code. • https://trust.mi.com/misrc/bulletins/advisory?cveId=545 •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0CVE-2023-26322 – GetApps application has code execution vulnerability
https://notcve.org/view.php?id=CVE-2023-26322
01 May 2024 — A code execution vulnerability exists in the XiaomiGetApps application product. This vulnerability is caused by the verification logic being bypassed, and an attacker can exploit this vulnerability to execute malicious code. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Xiaomi Pro 13 smartphones. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists withi... • https://trust.mi.com/misrc/bulletins/advisory?cveId=542 • CWE-94: Improper Control of Generation of Code ('Code Injection') •