Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2022-01-18	CVE-2020-14110	Incorrect Authorization vulnerability in MI Ax3600 Firmware 1.0.50 AX3600 router sensitive information leaked.There is an unauthorized interface through luci to obtain sensitive information and log in to the web background. local low complexity mi CWE-863	4.6
2021-04-08	CVE-2020-14104	Race Condition vulnerability in MI Ax3600 Firmware A RACE CONDITION on XQBACKUP causes a decompression path error on Xiaomi router AX3600 with ROM version =1.0.50. network mi CWE-362	6.8