These flaws could potentially allow hackers to access sensitive information stored on the devices, including personal and financial data. If exploited, the vulnerabilities could allow attackers to take over the devices, inject malicious code, or steal data from the device’s memory. The security flaws discovered span several Xiaomi apps and components, including Gallery, GetApps, Mi Video, MIUI Bluetooth, Phone Services, Print Spooler, Security, Security Core Component, Settings, ShareMe, System Tracing, and Xiaomi Cloud.
Among the most alarming vulnerabilities is a shell command injection bug found in the System Tracing app. The issues were reported to Xiaomi within five days, from April 25 to April 30, 2024, and Xiaomi has since remediated all the vulnerabilities reported by the Oversecured team. Users are advised to apply the latest updates to their devices to mitigate against potential threats.
This discovery of a significant number of flaws in Xiaomi devices reminds us of the ongoing challenges in securing mobile devices against increasingly sophisticated threats.
Source: Cyber Security News
To mitigate potential threats, it is important to implement additional cybersecurity measures with the help of a trusted partner like INFRA www.infrascan.net, or you can try yourself using check.website.