7.2

CVE-2020-8994

Exploit

EPSS 0.18%
Published 05.03.2020 16:15:12
Last modified 21.11.2024 05:39:47
Source cve@mitre.org
Teams watchlist Login
Open Login

An issue was discovered on XIAOMI AI speaker MDZ-25-DT 1.34.36, and 1.40.14. Attackers can get root shell by accessing the UART interface and then they can read Wi-Fi SSID or password, read the dialogue text files between users and XIAOMI AI speaker, use Text-To-Speech tools pretend XIAOMI speakers' voice achieve social engineering attacks, eavesdrop on users and record what XIAOMI AI speaker hears, delete the entire XIAOMI AI speaker system, modify system files, stop voice assistant service, start the XIAOMI AI speaker’s SSH service as a backdoor

Affected products Warnungen 0 Metrics 3 CWE 1 References 6

Data is provided by the National Vulnerability Database (NVD)

Mi ≫ Mdz-25-dt Firmware Version1.34.36

Mi ≫ Mdz-25-dt Version-

Mi ≫ Mdz-25-dt Firmware Version1.40.14

Mi ≫ Mdz-25-dt Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.18%	0.4

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	6.8	0.9	5.9	CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov	7.2	3.9	10	AV:L/AC:L/Au:N/C:C/I:C/A:C

CWE-287 Improper Authentication

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

https://github.com/Jian-Xian/CVE-POC/blob/master/CVE-2020-8994.md

Third Party Advisory

Exploit

https://www.usenix.org/sites/default/files/soups2018posters-lau.pdf

Third Party Advisory

Technical Description

https://youtu.be/yCadG38yZW8

Third Party Advisory

Exploit

https://nvd.nist.gov/vuln/detail/CVE-2020-8994

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2020-8994

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2020-8994

EUVD