cvelist/2020/14xxx/CVE-2020-14117.json

{
    "data_type": "CVE",
    "data_format": "MITRE",
    "data_version": "4.0",
    "CVE_data_meta": {
        "ID": "CVE-2020-14117",
        "ASSIGNER": "security@xiaomi.com",
        "STATE": "PUBLIC"
    },
    "affects": {
        "vendor": {
            "vendor_data": [
                {
                    "vendor_name": "n/a",
                    "product": {
                        "product_data": [
                            {
                                "product_name": "Xiaomi Content Center APP",
                                "version": {
                                    "version_data": [
                                        {
                                            "version_value": "Xiaomi Content Center APP version < 4.4.11"
                                        }
                                    ]
                                }
                            }
                        ]
                    }
                }
            ]
        }
    },
    "problemtype": {
        "problemtype_data": [
            {
                "description": [
                    {
                        "lang": "eng",
                        "value": "Improper permission configuration"
                    }
                ]
            }
        ]
    },
    "references": {
        "reference_data": [
            {
                "refsource": "MISC",
                "name": "https://trust.mi.com/zh-CN/misrc/bulletins/advisory?cveId=143",
                "url": "https://trust.mi.com/zh-CN/misrc/bulletins/advisory?cveId=143"
            }
        ]
    },
    "description": {
        "description_data": [
            {
                "lang": "eng",
                "value": "A improper permission configuration vulnerability in Xiaomi Content Center APP. This vulnerability is caused by the lack of correct permission verification in the Xiaomi content center APP, and attackers can use this vulnerability to invoke the sensitive component functions of the Xiaomi content center APP."
            }
        ]
    }
}
"-Synchronized-Data." 2020-06-15 13:01:25 +00:00			`{`
			`"data_type": "CVE",`
			`"data_format": "MITRE",`
			`"data_version": "4.0",`
			`"CVE_data_meta": {`
			`"ID": "CVE-2020-14117",`
"-Synchronized-Data." 2022-04-21 18:01:35 +00:00			`"ASSIGNER": "security@xiaomi.com",`
			`"STATE": "PUBLIC"`
			`},`
			`"affects": {`
			`"vendor": {`
			`"vendor_data": [`
			`{`
			`"vendor_name": "n/a",`
			`"product": {`
			`"product_data": [`
			`{`
			`"product_name": "Xiaomi Content Center APP",`
			`"version": {`
			`"version_data": [`
			`{`
			`"version_value": "Xiaomi Content Center APP version < 4.4.11"`
			`}`
			`]`
			`}`
			`}`
			`]`
			`}`
			`}`
			`]`
			`}`
			`},`
			`"problemtype": {`
			`"problemtype_data": [`
			`{`
			`"description": [`
			`{`
			`"lang": "eng",`
			`"value": "Improper permission configuration"`
			`}`
			`]`
			`}`
			`]`
			`},`
			`"references": {`
			`"reference_data": [`
			`{`
			`"refsource": "MISC",`
			`"name": "https://trust.mi.com/zh-CN/misrc/bulletins/advisory?cveId=143",`
			`"url": "https://trust.mi.com/zh-CN/misrc/bulletins/advisory?cveId=143"`
			`}`
			`]`
"-Synchronized-Data." 2020-06-15 13:01:25 +00:00			`},`
			`"description": {`
			`"description_data": [`
			`{`
			`"lang": "eng",`
"-Synchronized-Data." 2022-04-21 18:01:35 +00:00			`"value": "A improper permission configuration vulnerability in Xiaomi Content Center APP. This vulnerability is caused by the lack of correct permission verification in the Xiaomi content center APP, and attackers can use this vulnerability to invoke the sensitive component functions of the Xiaomi content center APP."`
"-Synchronized-Data." 2020-06-15 13:01:25 +00:00			`}`
			`]`
			`}`
			`}`