Here xiaomi service tool!! i have send xiaomi security team for fix bug but they dont care so why i should care if they dont have to enjoy guys.
CPID.rar
Rar password: veridoktoru.com
write anything in user pass are its will accept in software check picture about how to use dont ask me will not answer about using guide and phone should be with engineer rom after this when use tool and write second imei its will not gone with update or factory reset
Linux
here mail copy also
Dear Xiaomi Security Team,
I have identified a *critical security vulnerability* in one of your APIs related to device critical data signing. The issue is present at the following endpoint:
*Vulnerable API URL:* https://protect.dev.sec.intl.miui.com/factory/encrypt/deviceInfo
### *Issue Description:*
The API allows *unauthenticated* users to generate *CSSD (Cryptographic Signed Security Data) and critical_data* using only the *sid and secretKey* parameters. This means:
- No *username/password authentication* is required.
- An attacker can *generate unlimited signed critical data* without authorization.
- This could lead to potential abuse, including device authentication bypass, unauthorized device registration, or data manipulation.
### *Impact:*
This vulnerability could enable attackers to:
*Bypass device security mechanisms*
*Exploit Xiaomi’s authentication systems*
*Potentially manipulate device data for unauthorized access*
### *Steps to Reproduce:*
1. Send a request to https://protect.dev.sec.intl.miui.com/factory/encrypt/deviceInfo
2. Provide only the sid and secretKey parameters
3. Observe that the API successfully generates *CSSD and critical_data* without requiring authentication
### *Suggested Fix:*
- Implement *strong authentication* for this API (e.g., token-based access).
- Restrict *unauthorized access* to ensure that only validated Xiaomi services can generate signed data.
### *Disclosure Policy:*
I am *sharing this information responsibly* and have not disclosed it publicly. Please review this issue as soon as possible, as it poses a significant security risk.
I would appreciate a response regarding the remediation plan and any further information needed.
*Best regards,*
CPID.rar
Rar password: veridoktoru.com
write anything in user pass are its will accept in software check picture about how to use dont ask me will not answer about using guide and phone should be with engineer rom after this when use tool and write second imei its will not gone with update or factory reset
Linux
here mail copy also
Dear Xiaomi Security Team,
I have identified a *critical security vulnerability* in one of your APIs related to device critical data signing. The issue is present at the following endpoint:
*Vulnerable API URL:* https://protect.dev.sec.intl.miui.com/factory/encrypt/deviceInfo
### *Issue Description:*
The API allows *unauthenticated* users to generate *CSSD (Cryptographic Signed Security Data) and critical_data* using only the *sid and secretKey* parameters. This means:
- No *username/password authentication* is required.
- An attacker can *generate unlimited signed critical data* without authorization.
- This could lead to potential abuse, including device authentication bypass, unauthorized device registration, or data manipulation.
### *Impact:*
This vulnerability could enable attackers to:
*Bypass device security mechanisms* *Exploit Xiaomi’s authentication systems* *Potentially manipulate device data for unauthorized access* ### *Steps to Reproduce:*
1. Send a request to https://protect.dev.sec.intl.miui.com/factory/encrypt/deviceInfo
2. Provide only the sid and secretKey parameters
3. Observe that the API successfully generates *CSSD and critical_data* without requiring authentication
### *Suggested Fix:*
- Implement *strong authentication* for this API (e.g., token-based access).
- Restrict *unauthorized access* to ensure that only validated Xiaomi services can generate signed data.
### *Disclosure Policy:*
I am *sharing this information responsibly* and have not disclosed it publicly. Please review this issue as soon as possible, as it poses a significant security risk.
I would appreciate a response regarding the remediation plan and any further information needed.
*Best regards,*
