Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Redmi_6_firmware
(Mi)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 3 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2018-12-07 | CVE-2018-19939 | The Goodix GT9xx touchscreen driver for custom Linux kernels on Xiaomi daisy-o-oss and daisy-p-oss as used in Mi A2 Lite and RedMi6 pro devices through 2018-08-27 has a NULL pointer dereference in kfree after a kmalloc failure in gtp_read_Color in drivers/input/touchscreen/gt917d/gt9xx.c. | Mi_a2_lite_firmware, Redmi_6_firmware | 7.5 | ||
| 2019-06-07 | CVE-2018-20523 | Xiaomi Stock Browser 10.2.4.g on Xiaomi Redmi Note 5 Pro devices and other Redmi Android phones allows content provider injection. In other words, a third-party application can read the user's cleartext browser history via an app.provider.query content://com.android.browser.searchhistory/searchhistory request. | Redmi_4a_firmware, Redmi_5_plus_firmware, Redmi_6_firmware, Redmi_6a_firmware, Redmi_7_firmware, Redmi_7a_firmware, Redmi_go_firmware, Redmi_k20_firmware, Redmi_k20_pro_firmware, Redmi_note_4_firmware, Redmi_note_5_firmware, Redmi_note_5_pro_firmware, Redmi_note_5a_prime_firmware, Redmi_note_6_pro_firmware, Redmi_note_7_firmware, Redmi_note_7s_firmware, Redmi_s2_firmware, Redmi_y3_firmware, Stock_browser | 5.3 | ||
| 2019-11-14 | CVE-2019-15340 | The Xiaomi Redmi 6 Pro Android device with a build fingerprint of xiaomi/sakura_india/sakura_india:8.1.0/OPM1.171019.019/V9.6.4.0.ODMMIFD:user/release-keys contains a pre-installed app with a package name of com.huaqin.factory app (versionCode=1, versionName=QL1715_201805292006) that allows any app co-located on the device to programmatically disable and enable Wi-Fi, Bluetooth, and GPS without the corresponding access permission through an exported interface. | Redmi_6_firmware | N/A |