Mi Xiaomi R3600 Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Mi Xiaomi R3600 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2020-11960 — CVSS 9.8 (critical): Xiaomi router R3600 ROM before 1.0.50 is affected by a vulnerability when checking backup file in c_upload interface let attacker able to…
CVE-2020-14094 — CVSS 9.8 (critical): In Xiaomi router R3600, ROM version<1.0.20, the connection service can be injected through the web interface, resulting in stack overflow…
CVE-2020-14095 — CVSS 9.8 (critical): In Xiaomi router R3600, ROM version<1.0.20, a connect service suffers from an injection vulnerability through the web interface, leading to…
CVE-2020-11959 — CVSS 7.5 (high): An unsafe configuration of nginx lead to information leak in Xiaomi router R3600 ROM before 1.0.50.
CVE-2020-11961 — CVSS 7.5 (high): Xiaomi router R3600 ROM before 1.0.50 is affected by a sensitive information leakage caused by an insecure interface get_config_result…