CVE-2020-11960

2020-06-2416:23:54

mitre

www.cve.org

9.4 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

60.8%

JSON

Xiaomi router R3600 ROM before 1.0.50 is affected by a vulnerability when checking backup file in c_upload interface let attacker able to extract malicious file under any location in /tmp, lead to possible RCE and DoS

References

privacy.mi.com/trust#/security/vulnerability-management/vulnerability-announcement/detail?id=15