Vulnerability Details CVE-2020-14115
A command injection vulnerability exists in the Xiaomi Router AX3600. The vulnerability is caused by a lack of inspection for incoming data detection. Attackers can exploit this vulnerability to execute code.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 71.6%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 10.0
References
Products affected by CVE-2020-14115
-
cpe:2.3:h:mi:ax3600:-
-
cpe:2.3:o:mi:ax3600_firmware:-
-
cpe:2.3:o:mi:ax3600_firmware:1.0.50