MIUI OS Version 10.1.3.0 Lockscreen Bypass Vulnerability via Wallpaper Carousel

MIUI OS Version 10.1.3.0 Lockscreen Bypass Vulnerability via Wallpaper Carousel

CVE-2019-11015 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:N/A:N

A vulnerability was found in the MIUI OS version 10.1.3.0 that allows a physically proximate attacker to bypass Lockscreen based authentication via the Wallpaper Carousel application to obtain sensitive Clipboard data and the user's stored credentials (partially). This occurs because of paste access to a social media login page.

Learn more about our Physical Security Assessment.