On Xiaomi router AX1800 rom version < 1.0.336 and RM1800 root version < 1.0.26, the encryption scheme for a userβs backup files uses hard-coded keys, which can expose sensitive information such as a userβs password.
[
{
"product": "Xiaomi Router AX1800,Xiaomi Rourer RM1800",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Xiaomi Router AX1800 rom version < 1.0.336, Xiaomi Router RM1800 root version < 1.0.26"
}
]
}
]