// For flags

CVE-2019-12762

 

Severity Score

4.2
*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

Xiaomi Mi 5s Plus devices allow attackers to trigger touchscreen anomalies via a radio signal between 198 kHz and 203 kHz, as demonstrated by a transmitter and antenna hidden just beneath the surface of a coffee-shop table, aka Ghost Touch.

Los dispositivos Xiaomi Mi 5s Plus permiten a los atacantes desencadenar anomalías de la pantalla táctil a través de una señal de radio entre 198 kHz y 203 kHz, como lo demuestra un transmisor y una antena ocultos justo debajo de la superficie de una mesa de cafetería, también conocida como Ghost Touch.

*Credits: N/A
CVSS Scores
Attack Vector
Physical
Attack Complexity
High
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
High
Availability
None
Attack Vector
Local
Attack Complexity
Medium
Authentication
None
Confidentiality
None
Integrity
Partial
Availability
None
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2019-06-06 CVE Reserved
  • 2019-06-06 CVE Published
  • 2023-11-08 EPSS Updated
  • 2024-08-04 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Mi
Search vendor "Mi"
Mi 5s Plus Firmware
Search vendor "Mi" for product "Mi 5s Plus Firmware"
--
Affected
in Mi
Search vendor "Mi"
Mi 5s Plus
Search vendor "Mi" for product "Mi 5s Plus"
--
Safe
Sony
Search vendor "Sony"
Xperia Z4 Firmware
Search vendor "Sony" for product "Xperia Z4 Firmware"
--
Affected
in Sony
Search vendor "Sony"
Xperia Z4
Search vendor "Sony" for product "Xperia Z4"
--
Safe
Samsung
Search vendor "Samsung"
Galaxy S6 Edge Firmware
Search vendor "Samsung" for product "Galaxy S6 Edge Firmware"
--
Affected
in Samsung
Search vendor "Samsung"
Galaxy S6 Edge
Search vendor "Samsung" for product "Galaxy S6 Edge"
--
Safe
Samsung
Search vendor "Samsung"
Galaxy S4 Firmware
Search vendor "Samsung" for product "Galaxy S4 Firmware"
--
Affected
in Samsung
Search vendor "Samsung"
Galaxy S4
Search vendor "Samsung" for product "Galaxy S4"
--
Safe
Google
Search vendor "Google"
Nexus 7 Firmware
Search vendor "Google" for product "Nexus 7 Firmware"
--
Affected
in Google
Search vendor "Google"
Nexus 7
Search vendor "Google" for product "Nexus 7"
--
Safe
Google
Search vendor "Google"
Nexus 9 Firmware
Search vendor "Google" for product "Nexus 9 Firmware"
--
Affected
in Google
Search vendor "Google"
Nexus 9
Search vendor "Google" for product "Nexus 9"
--
Safe
Sharp
Search vendor "Sharp"
Aquos Zeta Sh-04f Firmware
Search vendor "Sharp" for product "Aquos Zeta Sh-04f Firmware"
--
Affected
in Sharp
Search vendor "Sharp"
Aquos Zeta Sh-04f
Search vendor "Sharp" for product "Aquos Zeta Sh-04f"
--
Safe
Fujitsu
Search vendor "Fujitsu"
Arrows Nx F05-f Firmware
Search vendor "Fujitsu" for product "Arrows Nx F05-f Firmware"
--
Affected
in Fujitsu
Search vendor "Fujitsu"
Arrows Nx F05-f
Search vendor "Fujitsu" for product "Arrows Nx F05-f"
--
Safe