Shodan
Vulnerabilities
Vulnerable Software
Mi:  Security Vulnerabilities
CVE-2020-14105
The application in the mobile phone can read the SNO information of the device, Xiaomi 10 MIUI < 2020.01.15.
CVSS Score
5.5
EPSS Score
0.001
Published
2021-04-20
CVE-2020-14103
The application in the mobile phone can read the SNO information of the device, Xiaomi 10 MIUI < 2020.01.15.
CVSS Score
5.5
EPSS Score
0.002
Published
2021-04-08
CVE-2020-14106
The application in the mobile phone can unauthorized access to the list of running processes in the mobile phone, Xiaomi Mobile Phone MIUI < 2021.01.26.
CVSS Score
5.5
EPSS Score
0.002
Published
2021-04-08
CVE-2020-14099
On Xiaomi router AX1800 rom version < 1.0.336 and RM1800 root version < 1.0.26, the encryption scheme for a user's backup files uses hard-coded keys, which can expose sensitive information such as a user's password.
CVSS Score
7.5
EPSS Score
0.001
Published
2021-04-08
CVE-2020-14104
A RACE CONDITION on XQBACKUP causes a decompression path error on Xiaomi router AX3600 with ROM version =1.0.50.
CVSS Score
8.1
EPSS Score
0.004
Published
2021-04-08
CVE-2020-14097
Wrong nginx configuration, causing specific paths to be downloaded without authorization. This affects Xiaomi router AX6 ROM version < 1.0.18.
CVSS Score
7.5
EPSS Score
0.002
Published
2021-01-13
CVE-2020-14098
The login verification can be bypassed by using the problem that the time is not synchronized after the router restarts. This affects Xiaomi router AX1800rom version < 1.0.336 and Xiaomi route RM1800 root version < 1.0.26.
CVSS Score
7.5
EPSS Score
0.002
Published
2021-01-13
CVE-2020-14101
The data collection SDK of the router web management interface caused the leakage of the token. This affects Xiaomi router AX1800rom version < 1.0.336 and Xiaomi route RM1800 root version < 1.0.26.
CVSS Score
7.5
EPSS Score
0.003
Published
2021-01-13
CVE-2020-14102
There is command injection when ddns processes the hostname, which causes the administrator user to obtain the root privilege of the router. This affects Xiaomi router AX1800rom version < 1.0.336 and Xiaomi route RM1800 root version < 1.0.26.
CVSS Score
7.2
EPSS Score
0.024
Published
2021-01-13
CVE-2020-14096
Memory overflow in Xiaomi AI speaker Rom version <1.59.6 can happen when the speaker verifying a malicious firmware during OTA process.
CVSS Score
9.8
EPSS Score
0.005
Published
2020-09-11


Products
Pricing
Contact Us

Shodan ® - All rights reserved