CVE-2020-11960
The CVE-2020-11960 entry concerns the Xiaomi router R3600 ROM prior to 1.0.50. A flaw in the c_upload interface’s backup file handling lets an attacker extract a malicious file to arbitrary /tmp locations, enabling potential remote code execution and denial of service. The NVD description documen...