VYPR

Stock Browser

by Xiaomi

CVEs (3)

  • CVE-2018-20523Jun 7, 2019
    risk 0.03cvss epss 0.10

    Xiaomi Stock Browser 10.2.4.g on Xiaomi Redmi Note 5 Pro devices and other Redmi Android phones allows content provider injection. In other words, a third-party application can read the user's cleartext browser history via an app.provider.query…

  • CVE-2019-13321Feb 10, 2020
    risk 0.00cvss epss 0.01

    This vulnerability allows network adjacent attackers to execute arbitrary code on affected installations of Xiaomi Browser Prior to 10.4.0. User interaction is required to exploit this vulnerability in that the target must connect to a malicious access point. The specific flaw…

  • CVE-2019-13322Feb 10, 2020
    risk 0.00cvss epss 0.03

    This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Xiaomi Browser Prior to 10.4.0. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific…