Vulnerability in Xiaomi Browser
CVE-2019-13321
This vulnerability allows network adjacent attackers to execute arbitrary code on affected installations of Xiaomi Browser Prior to 10.4.0. User interaction is required to exploit this vulnerability in that the target must connect to a mal…
EPSS: 0.001 (31.7th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 5.5 (Medium). Vector: CVSS:3.0/AV:A/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L.
Affected products
- Xiaomi Browser — versions Prior to 10.4.0
Weakness classification (CWE)
References
- www.zerodayinitiative.com/advisories/ZDI-19-659/ (x_refsource_MISC)
Frequently asked questions
- What is CVE-2019-13321?
- CVE-2019-13321 is a medium-severity vulnerability in Xiaomi Browser, classified under Incorrect Permission Assignment for Critical Resource. CVSS score: 5.5/10. Published 2020-02-10.
- How severe is CVE-2019-13321?
- Medium severity. CVSS v3 base score is 5.5 out of 10.