CVE-2020-14115

Summary

A command injection vulnerability exists in the Xiaomi Router AX3600. The vulnerability is caused by a lack of inspection for incoming data detection. Attackers can exploit this vulnerability to execute code.

Affected Software

VendorProductVersion RangeStatus
n/aXiaomi Router AX3600Xiaomi Router AX3600 version < 1.0.67affected

Weaknesses

  • Command injection

ADP Enrichment

CVE Program Container

Additional References

References