Buffer overflow

2021-09-1613:15:00

PRIOn knowledge base

www.prio-n.com

9.8 High

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

72.5%

JSON

There is a buffer overflow in librsa.so called by getwifipwdurl interface, resulting in code execution on Xiaomi router AX3600 with ROM version =rom< 1.1.12.

CPENameOperatorVersion
ax3600_firmwarele1.1.12

CPE	Name	Operator	Version
	ax3600_firmware	le	1.1.12

References

trust.mi.com/zh-CN/misrc/bulletins/advisory?cveId=17