The Xiaomi MiTalk Messenger (com.xiaomi.channel) application before 2.1.320 for Android does not properly protect data, which allows remote attackers to read or modify messaging information via a crafted application.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-200,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| xiaomi | mitalk_messenger | 2.1.280 |
| xiaomi | mitalk_messenger | 1.0 |
| xiaomi | mitalk_messenger | * |