In April 2019, security researcher Arif Khan reported that Xiaomi's browser apps Mi Browser and Mint Browser suffered from a vulnerability that allowed the URL address bar to be spoofed, which affected Indian as well as certain global versions of MIUI. Xiaomi gave Khan a Bug bounty but opted not to fix this issue.[28][29] In addition, a vulnerability in a wallpaper carousel app Glance on Indian versions of MIUI allowed a user to bypass the lock screen and access clipboard data.[30][31] This vulnerability was eventually fixed by Xiaomi.[31]