Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

OSV
OSVadded 2021/01/13 11:15 p.m.0 views

CVE-2020-14102

There is command injection when ddns processes the hostname, which causes the administrator user to obtain the root privilege of the router. This affects Xiaomi router AX1800rom version 1.0.336 and Xiaomi route RM1800 root version 1.0.26...

7.2CVSS5.8AI score
Exploits0References1
OSV
OSVadded 2021/01/13 11:15 p.m.3 views

CVE-2020-14101

The data collection SDK of the router web management interface caused the leakage of the token. This affects Xiaomi router AX1800rom version 1.0.336 and Xiaomi route RM1800 root version 1.0.26...

7.5CVSS7.1AI score0.00316EPSS
Exploits0References1
NVD
NVDadded 2021/01/13 11:15 p.m.8 views

CVE-2020-14098

The login verification can be bypassed by using the problem that the time is not synchronized after the router restarts. This affects Xiaomi router AX1800rom version 1.0.336 and Xiaomi route RM1800 root version 1.0.26...

7.5CVSS7.5AI score0.00237EPSS
Exploits0References1
NVD
NVDadded 2021/01/13 11:15 p.m.12 views

CVE-2020-14102

There is command injection when ddns processes the hostname, which causes the administrator user to obtain the root privilege of the router. This affects Xiaomi router AX1800rom version 1.0.336 and Xiaomi route RM1800 root version 1.0.26...

9CVSS7.2AI score0.02395EPSS
Exploits0References1
Prion
Prionadded 2021/01/13 11:15 p.m.12 views

Design/Logic Flaw

The login verification can be bypassed by using the problem that the time is not synchronized after the router restarts. This affects Xiaomi router AX1800rom version 1.0.336 and Xiaomi route RM1800 root version 1.0.26...

5CVSS7.5AI score0.00237EPSS
Exploits0References1Affected Software2
Prion
Prionadded 2021/01/13 11:15 p.m.12 views

Command injection

There is command injection when ddns processes the hostname, which causes the administrator user to obtain the root privilege of the router. This affects Xiaomi router AX1800rom version 1.0.336 and Xiaomi route RM1800 root version 1.0.26...

9CVSS7.2AI score0.02395EPSS
Exploits0References1Affected Software2
Cvelist
Cvelistadded 2021/01/13 10:33 p.m.10 views

CVE-2020-14102

There is command injection when ddns processes the hostname, which causes the administrator user to obtain the root privilege of the router. This affects Xiaomi router AX1800rom version 1.0.336 and Xiaomi route RM1800 root version 1.0.26...

7.2AI score0.02395EPSS
Exploits0References1
Cvelist
Cvelistadded 2021/01/13 10:30 p.m.10 views

CVE-2020-14098

The login verification can be bypassed by using the problem that the time is not synchronized after the router restarts. This affects Xiaomi router AX1800rom version 1.0.336 and Xiaomi route RM1800 root version 1.0.26...

7.5AI score0.00237EPSS
Exploits0References1
Cvelist
Cvelistadded 2021/01/13 10:25 p.m.13 views

CVE-2020-14101

The data collection SDK of the router web management interface caused the leakage of the token. This affects Xiaomi router AX1800rom version 1.0.336 and Xiaomi route RM1800 root version 1.0.26...

7.5AI score0.00316EPSS
Exploits0References1
CVE
CVEadded 2021/01/13 10:25 p.m.34 views

CVE-2020-14101

CVE-2020-14101 affects Xiaomi router software: the data collection SDK in the web management interface causes leakage of the authentication token in affected builds—AX1800ROM < 1.0.336 and RM1800 Root

7.5CVSS7.5AI score0.00316EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder