Vulnerability Description
A denial of service vulnerability exists in some Xiaomi models of phones. The vulnerability is caused by heap overflow and can be exploited by attackers to make remote denial of service.
CVSS Score
7.5
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Mi | Miui | < 2022.07.01 |
| Mi | Redmi K40 | - |
| Mi | Redmi Note 10 Pro | - |
Related Weaknesses (CWE)
References
- https://trust.mi.com/zh-CN/misrc/bulletins/advisory?cveId=169Vendor Advisory
- https://trust.mi.com/zh-CN/misrc/bulletins/advisory?cveId=169Vendor Advisory
FAQ
What is CVE-2020-14127?
CVE-2020-14127 is a vulnerability with a CVSS score of 7.5 (HIGH). A denial of service vulnerability exists in some Xiaomi models of phones. The vulnerability is caused by heap overflow and can be exploited by attackers to make remote denial of service.
How severe is CVE-2020-14127?
CVE-2020-14127 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-14127?
Check the references section above for vendor advisories and patch information. Affected products include: Mi Miui, Mi Redmi K40, Mi Redmi Note 10 Pro.