VYPR
Unrated severityNVD Advisory· Published Nov 14, 2019· Updated Aug 5, 2024

CVE-2019-15467

CVE-2019-15467

Description

The Xiaomi Mi Mix 2S Android device with a build fingerprint of Xiaomi/polaris/polaris:8.0.0/OPR1.170623.032/V9.5.19.0.ODGMIFA:user/release-keys contains a pre-installed app with a package name of com.huaqin.factory app (versionCode=1, versionName=A2060_201801032053) that allows unauthorized wireless settings modification via a confused deputy attack. This capability can be accessed by any app co-located on the device.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • huaqin/factorydescription
  • Xiaomi/Mi Mix 2Sllm-fuzzy
    Range: Android 8.0.0 build V9.5.19.0.ODGMIFA

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.