Mi Xiaomi R3d Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Mi Xiaomi R3d Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2018-14010 — CVSS 9.8 (critical): OS command injection in the guest Wi-Fi settings feature in /cgi-bin/luci on Xiaomi R3P before 2.14.5, R3C before 2.12.15, R3 before…
CVE-2018-14060 — CVSS 9.8 (critical): OS command injection in the AP mode settings feature in /cgi-bin/luci /api/misystem/set_router_wifiap on Xiaomi R3D before 2.26.4 devices…