CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Mi: >> Ax3600 Firmware >> 1.1.12 Security Vulnerabilities

CVE-2020-14111

A command injection vulnerability exists in the Xiaomi Router AX3600. The vulnerability is caused by a lack of inspection for incoming data detection. Attackers can exploit this vulnerability to execute code.

CVSS Score

7.8

EPSS Score

0.0

Published

2022-03-10

CVE-2020-14124

There is a buffer overflow in librsa.so called by getwifipwdurl interface, resulting in code execution on Xiaomi router AX3600 with ROM version =rom< 1.1.12.

CVSS Score

9.8

EPSS Score

0.007

Published

2021-09-16

CVE-2020-14109

There is command injection in the meshd program in the routing system, resulting in command execution under administrator authority on Xiaomi router AX3600 with ROM version =< 1.1.12

CVSS Score

7.2

EPSS Score

0.01

Published

2021-09-16

Page 1

Vulnerabilities

Vulnerable Software

Mi: >> Ax3600 Firmware >> 1.1.12 Security Vulnerabilities

Products

Pricing

Contact Us