Xiaomi Product Security Update Advisory (CVE-2024-45347)

Overview

 

Xiaomi has released a security update to fix vulnerabilities in its products. Users of affected products are advised to update to the latest version.
 

 

Affected Products

 

CVE-2024-45347

 

Xiaomi Mi Connect Version: 3.1.895.10 and earlier

 

 

Resolved Vulnerabilities

 

Improper authentication vulnerability in Xiaomi Mi Connect service (CVE-2024-45347)

 

 

Vulnerability Patches

Vulnerability Patches have been made available in the latest update. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

 

CVE-2024-45347

 

Xiaomi Mi Connect version: 3.1.953.10 and higher

 

 

References

 

[1] 互联互通应用协议存在缺陷导致未授权访问
https://trust.mi.com/zh-CN/misrc/bulletins/advisory?cveId=548