{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-05T04:23:37.924","vulnerabilities":[{"cve":{"id":"CVE-2024-45354","sourceIdentifier":"security@xiaomi.com","published":"2025-03-27T07:15:38.507","lastModified":"2026-04-15T00:35:42.020","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A code execution vulnerability exists in the Xiaomi shop applicationproduct. The vulnerability is caused by improper input validation and can be exploited by attackers to execute malicious code."},{"lang":"es","value":"Existe una vulnerabilidad de ejecución de código en la aplicación de la tienda Xiaomi. Esta vulnerabilidad se debe a una validación de entrada incorrecta y puede ser explotada por atacantes para ejecutar código malicioso."}],"metrics":{"cvssMetricV31":[{"source":"security@xiaomi.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4}]},"weaknesses":[{"source":"security@xiaomi.com","type":"Secondary","description":[{"lang":"en","value":"CWE-346"}]}],"references":[{"url":"https://trust.mi.com/zh-CN/misrc/bulletins/advisory?cveId=552","source":"security@xiaomi.com"}]}}]}