CVE-2019-12762

Xiaomi Mi 5s Plus devices allow attackers to trigger touchscreen anomalies via a radio signal between 198 kHz and 203 kHz, as demonstrated by a transmitter and antenna hidden just beneath the surface of a coffee-shop table, aka Ghost Touch.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
4.2 MEDIUM
PHYSICAL
HIGH
NONE
CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 4%
VendorProductVersion
mimi_5s_plus_firmware
-
sonyxperia_z4_firmware
-
samsunggalaxy_s6_edge_firmware
-
samsunggalaxy_s4_firmware
-
googlenexus_7_firmware
-
googlenexus_9_firmware
-
sharpaquos_zeta_sh-04f_firmware
-
fujitsuarrows_nx_f05-f_firmware
-
𝑥
= Vulnerable software versions
References
https://hackercombat.com/nfc-vulnerability-may-promote-ghost-screen-taps/
https://medium.com/%40juliodellaflora/ghost-touch-on-xiaomi-mi5s-plus-707998308607
https://hackercombat.com/nfc-vulnerability-may-promote-ghost-screen-taps/
https://medium.com/%40juliodellaflora/ghost-touch-on-xiaomi-mi5s-plus-707998308607