3 matches found
CVE-2020-14102
There is command injection when ddns processes the hostname, which causes the administrator user to obtain the root privilege of the router. This affects Xiaomi router AX1800rom version 1.0.336 and Xiaomi route RM1800 root version 1.0.26...
CVE-2020-14102
The CVE-2020-14102 entry describes a command injection in the router’s Dynamic DNS (ddns) hostname processing, enabling attempted privilege escalation to root for the administrator user. Affected devices include Xiaomi AX1800rom software versions prior to 1.0.336 and Xiaomi RM1800 root prior to 1...
CVE-2020-14102
There is command injection when ddns processes the hostname, which causes the administrator user to obtain the root privilege of the router. This affects Xiaomi router AX1800rom version 1.0.336 and Xiaomi route RM1800 root version 1.0.26...