CVE-2020-14112
MEDIUMXiaomi Router AX6000 < 1.0.56 - Unauthorized Information Disclosure via Incorrect Routing Configuration
Title source: llmDescription
Information Leak Vulnerability exists in the Xiaomi Router AX6000. The vulnerability is caused by incorrect routing configuration. Attackers can exploit this vulnerability to download part of the files in Xiaomi Router AX6000.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_misc
https://trust.mi.com/zh-CN/misrc/bulletins/advisory?cveId=34
Scores
CVSS v3
5.3
EPSS
0.0075
EPSS Percentile
50.2%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Details
CWE
CWE-200
Status
published
Products (1)
mi/ax6000_firmware
< 1.0.56
Published
Mar 10, 2022
Tracked Since
Feb 18, 2026