Powered by: Allows bounty splitting:
Average time to first program response: 52
Average time to bounty awarded null: 382
Average time to report resolved: 2784
Handle xiaomi
Managed program: false
Name: Xiaomi
Offers bounties: true
Offers swag: false
Response efficiency percentage: 76
Submission state: open
Url: https://hackerone.com/xiaomi
Website: http://www.mi.com
In scope: Asset identifier: *.mi.comAsset type: URLAvailability requirement: highConfidentiality requirement: highEligible for bounty: trueEligible for submissions: trueInstruction: Integrity requirements: highMax severity: criticalAsset identifier: *.miui.comAsset type: URLAvailability requirement: mediumConfidentiality requirement: mediumEligible for bounty: trueEligible for submissions: trueInstruction: Integrity requirements: mediumMax severity: criticalAsset identifier: *.miwifi.comAsset type: URLAvailability requirement: mediumConfidentiality requirement: mediumEligible for bounty: trueEligible for submissions: trueInstruction: Integrity requirements: mediumMax severity: criticalAsset identifier: *.xiaomi.comAsset type: URLAvailability requirement: highConfidentiality requirement: highEligible for bounty: trueEligible for submissions: trueInstruction: Integrity requirements: highMax severity: criticalAsset identifier: *.xiaomiyoupin.comAsset type: URLAvailability requirement: Confidentiality requirement: Eligible for bounty: trueEligible for submissions: trueInstruction: Integrity requirements: Max severity: criticalAsset identifier: MIUI OS for Xiaomi PhoneAsset type: OTHERAvailability requirement: highConfidentiality requirement: highEligible for bounty: trueEligible for submissions: trueInstruction: MIUI is Xiaomi phone operation system (OS), custimized on stock android.
the scope inculdes the pre-installed apps with Xiaomi certification signed.Integrity requirements: highMax severity: criticalAsset identifier: Mi BandAsset type: HARDWAREAvailability requirement: lowConfidentiality requirement: lowEligible for bounty: trueEligible for submissions: trueInstruction: mi-band-3/4/5Integrity requirements: mediumMax severity: highAsset identifier: Mi Electric Scooter Asset type: HARDWAREAvailability requirement: lowConfidentiality requirement: lowEligible for bounty: trueEligible for submissions: trueInstruction: https://www.mi.com/us/mi-electric-scooter/Integrity requirements: mediumMax severity: highAsset identifier: Mi Home Webcam Asset type: HARDWAREAvailability requirement: lowConfidentiality requirement: lowEligible for bounty: trueEligible for submissions: trueInstruction: https://www.mi.com/us/mi-home-security-camera/ , https://www.mi.com/in/camera-360/Integrity requirements: mediumMax severity: highAsset identifier: Mi Laser ProjectorAsset type: HARDWAREAvailability requirement: lowConfidentiality requirement: lowEligible for bounty: trueEligible for submissions: trueInstruction: https://www.mi.com/us/mi-laser-projector-150/Integrity requirements: mediumMax severity: highAsset identifier: Mi Robot VacuumAsset type: HARDWAREAvailability requirement: lowConfidentiality requirement: lowEligible for bounty: trueEligible for submissions: trueInstruction: https://www.mi.com/hk/mi-robot-vacuum/ Integrity requirements: mediumMax severity: highAsset identifier: Mi TV Asset type: HARDWAREAvailability requirement: lowConfidentiality requirement: lowEligible for bounty: trueEligible for submissions: trueInstruction: https://store.mi.com/in/accessories/213Integrity requirements: mediumMax severity: highAsset identifier: Mi TV BoxAsset type: HARDWAREAvailability requirement: lowConfidentiality requirement: lowEligible for bounty: trueEligible for submissions: trueInstruction: https://www.mi.com/us/mi-box-s/Integrity requirements: mediumMax severity: highAsset identifier: Mi/Redmi PhoneAsset type: HARDWAREAvailability requirement: lowConfidentiality requirement: lowEligible for bounty: trueEligible for submissions: trueInstruction: https://www.mi.com/hk/mi-note-10/,https://www.mi.com/hk/mi-a3/,https://www.mi.com/hk/max3/,https://www.mi.com/hk/mi-8-pro/,https://www.mi.com/hk/redmi-note-8-t/,https://www.mi.com/hk/redmi-note-8-pro/Integrity requirements: mediumMax severity: highAsset identifier: Other APK AssetsAsset type: OTHERAvailability requirement: mediumConfidentiality requirement: lowEligible for bounty: trueEligible for submissions: trueInstruction: com.miui.screenrecorder
com.android.providers.telephony
com.android.dynsystem
com.miui.powerkeeper
com.xiaomi.miplay_client
com.milink.service
com.xiaomi.mi_connect_service
com.android.updater
com.miui.securityadd/com.miui.gallery/com.android.mms.service/com.miui.msa.global/com.android.browser/com.miui.videoplayer/com.android.soundrecorder/com.miui.backup/com.miui.notification/com.android.certinstaller/com.miui.huanji/com.miui.hybrid/com.miui.vsimcore/com.miui.securitycore/com.mi.health/com.xiaomi.simactivate.service/com.miui.phrase/com.miui.player/com.miui.miservice/com.android.provision/com.miui.system/com.miui.global.packageinstaller/com.miui.compass/com.miui.cit/com.miui.android.fashiongallery/com.miui.bugreport/com.android.fileexplorer/com.android.camera/com.xiaomi.glgm/com.xiaomi.xmsf/com.miui.mishare.connectivity/com.miui.freeform/com.xiaomi.finddevice/com.mi.global.bbs/com.xiaomi.joyose/com.mi.android.globalFileexplorer/com.miui.notes/com.miui.wmsvc/com.xiaomi.midrop/com.miui.touchassistant/com.miui.miwallpaper/com.xiaomi.bluetooth/com.miui.cleanmaster/com.miui.analytics/com.android.settings/com.xiaomi.scanner/com.android.phone/com.android.deskclock/com.android.systemui/com.xiaomi.discover/com.android.thememanager/com.android.bluetooth/com.miui.face/com.miui.home
Integrity requirements: lowMax severity: highAsset identifier: Other Hardware AssetsAsset type: OTHERAvailability requirement: highConfidentiality requirement: highEligible for bounty: trueEligible for submissions: trueInstruction: Accepted ranges of hardware in Xiaomi’s Program include Xiaomi and Mijia products ( these are for assets that are not specified in the Hardware/IoT scope list )Integrity requirements: highMax severity: criticalAsset identifier: com.android.browserAsset type: OTHER_APKAvailability requirement: mediumConfidentiality requirement: lowEligible for bounty: trueEligible for submissions: trueInstruction: Integrity requirements: lowMax severity: highAsset identifier: com.mi.global.shopAsset type: OTHER_APKAvailability requirement: highConfidentiality requirement: highEligible for bounty: trueEligible for submissions: trueInstruction: Integrity requirements: highMax severity: criticalAsset identifier: com.miui.cloudbackupAsset type: OTHER_APKAvailability requirement: highConfidentiality requirement: highEligible for bounty: trueEligible for submissions: trueInstruction: Integrity requirements: highMax severity: criticalAsset identifier: com.miui.cloudserviceAsset type: OTHER_APKAvailability requirement: highConfidentiality requirement: highEligible for bounty: trueEligible for submissions: trueInstruction: Integrity requirements: highMax severity: criticalAsset identifier: com.miui.micloudsyncAsset type: OTHER_APKAvailability requirement: highConfidentiality requirement: highEligible for bounty: trueEligible for submissions: trueInstruction: Integrity requirements: highMax severity: criticalAsset identifier: com.xiaomi.accountAsset type: OTHER_APKAvailability requirement: highConfidentiality requirement: highEligible for bounty: trueEligible for submissions: trueInstruction: Integrity requirements: highMax severity: criticalAsset identifier: com.xiaomi.marketAsset type: OTHER_APKAvailability requirement: highConfidentiality requirement: highEligible for bounty: trueEligible for submissions: trueInstruction: Integrity requirements: highMax severity: criticalAsset identifier: com.xiaomi.mibrain.speechAsset type: OTHER_APKAvailability requirement: highConfidentiality requirement: highEligible for bounty: trueEligible for submissions: trueInstruction: Integrity requirements: highMax severity: criticalAsset identifier: com.xiaomi.micloud.sdkAsset type: OTHER_APKAvailability requirement: highConfidentiality requirement: highEligible for bounty: trueEligible for submissions: trueInstruction: Integrity requirements: highMax severity: criticalAsset identifier: com.xiaomi.mipicksAsset type: OTHER_APKAvailability requirement: Confidentiality requirement: highEligible for bounty: trueEligible for submissions: trueInstruction: Integrity requirements: Max severity: criticalAsset identifier: com.xiaomi.paymentAsset type: OTHER_APKAvailability requirement: Confidentiality requirement: highEligible for bounty: trueEligible for submissions: trueInstruction: Integrity requirements: Max severity: criticalAsset identifier: com.xiaomi.smarthomeAsset type: OTHER_APKAvailability requirement: highConfidentiality requirement: highEligible for bounty: trueEligible for submissions: trueInstruction: Integrity requirements: highMax severity: critical
