VYPR

AI speaker MDZ-25-DT

by Xiaomi

CVEs (1)

  • CVE-2020-8994Mar 5, 2020
    risk 0.00cvss epss 0.01

    An issue was discovered on XIAOMI AI speaker MDZ-25-DT 1.34.36, and 1.40.14. Attackers can get root shell by accessing the UART interface and then they can read Wi-Fi SSID or password, read the dialogue text files between users and XIAOMI AI speaker, use Text-To-Speech tools…