Vulnerabilities > MI > Ax3600

DATE CVE VULNERABILITY TITLE RISK
2021-09-16 CVE-2020-14119 Command Injection vulnerability in MI Ax3600
There is command injection in the addMeshNode interface of xqnetwork.lua, which leads to command execution under administrator authority on Xiaomi router AX3600 with rom versionrom< 1.1.12
network
low complexity
mi CWE-77
critical
9.8