router CVE-2018-14010 CVE-2018-14060
OS command injection in the AP mode settings feature in /cgi-bin/luci /api/misystem/set_router_wifiap on Xiaomi R3D prior to 2.26.4 devices allows an malicious user to execute any command via crafted JSON data.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mi xiaomi_r3d_firmware |