CVE-2020-14094

Summary

In Xiaomi router R3600, ROM version<1.0.20, the connection service can be injected through the web interface, resulting in stack overflow or remote code execution.

Affected Software

VendorProductVersion RangeStatus
XiaomiXiaomi router R3600ROM version<1.0.20affected

Weaknesses

  • remote code execution

ADP Enrichment

CVE Program Container

Additional References

References