Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-26323

A code execution vulnerability exists in the Xiaomi App market product. The vulnerability is caused by unsafe configuration and can be exploited by attackers to execute arbitrary code.

Published

2024-08-28T08:15:06.427

Last Modified

2025-03-27T16:15:19.140

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.6 (HIGH)

Weaknesses

Type: Primary
NVD-CWE-noinfo
Type: Secondary
CWE-95

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	mi	app_market	< 4.58.2	Yes

References

https://trust.mi.com/misrc/bulletins/advisory?cveId=543 Vendor Advisory ([email protected])