Vulnerabilities > CVE-2020-14110 - Incorrect Authorization vulnerability in MI Ax3600 Firmware 1.0.50

047910
CVSS 4.6 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
local
low complexity
mi
CWE-863

Summary

AX3600 router sensitive information leaked.There is an unauthorized interface through luci to obtain sensitive information and log in to the web background.

Vulnerable Configurations

Part Description Count
OS
Mi
2
Hardware
Mi
1

Common Weakness Enumeration (CWE)