Ax1800 Firmware

ax1800_firmware

Vendor: Mi • 4 CVEs

CVEs (4)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2020-14099 1Mi 2Ax1800 Firmware Rm1800 Firmware Nov 21, 2024 Apr 8, 2021 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 On Xiaomi router AX1800 rom version < 1.0.336 and RM1800 root version < 1.0.26, the encryption scheme for a user's backup files uses hard-coded keys, which can expose sensitive information such as a user's password.
CVE-2020-14102 1Mi 2Ax1800 Firmware Rm1800 Firmware Nov 21, 2024 Jan 13, 2021 N/A· v4 7.2 HIGH· v3 9.0 HIGH· v2 There is command injection when ddns processes the hostname, which causes the administrator user to obtain the root privilege of the router. This affects Xiaomi router AX1800rom version < 1.0.336 and Xiaomi route RM1800...Show more There is command injection when ddns processes the hostname, which causes the administrator user to obtain the root privilege of the router. This affects Xiaomi router AX1800rom version < 1.0.336 and Xiaomi route RM1800 root version < 1.0.26.Show less
CVE-2020-14101 1Mi 2Ax1800 Firmware Rm1800 Firmware Nov 21, 2024 Jan 13, 2021 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 The data collection SDK of the router web management interface caused the leakage of the token. This affects Xiaomi router AX1800rom version < 1.0.336 and Xiaomi route RM1800 root version < 1.0.26.
CVE-2020-14098 1Mi 2Ax1800 Firmware Rm1800 Firmware Nov 21, 2024 Jan 13, 2021 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 The login verification can be bypassed by using the problem that the time is not synchronized after the router restarts. This affects Xiaomi router AX1800rom version < 1.0.336 and Xiaomi route RM1800 root version < 1.0.2...Show more The login verification can be bypassed by using the problem that the time is not synchronized after the router restarts. This affects Xiaomi router AX1800rom version < 1.0.336 and Xiaomi route RM1800 root version < 1.0.26.Show less