Vulnerabilities > MI > Medium

DATE CVE VULNERABILITY TITLE RISK
2020-06-24 CVE-2020-11961 Information Exposure vulnerability in MI Xiaomi R3600 Firmware
Xiaomi router R3600 ROM before 1.0.50 is affected by a sensitive information leakage caused by an insecure interface get_config_result without authentication
network
low complexity
mi CWE-200
5.0
2020-06-24 CVE-2020-11959 Information Exposure vulnerability in MI Xiaomi R3600 Firmware
An unsafe configuration of nginx lead to information leak in Xiaomi router R3600 ROM before 1.0.50.
network
low complexity
mi CWE-200
5.0
2020-03-06 CVE-2020-9531 Unspecified vulnerability in MI Miui Firmware 11.0.5.0.Qfaeuxm
An issue was discovered on Xiaomi MIUI V11.0.5.0.QFAEUXM devices.
mi
4.3
2020-03-06 CVE-2020-9530 Information Exposure vulnerability in MI Miui Firmware 11.0.5.0.Qfaeuxm
An issue was discovered on Xiaomi MIUI V11.0.5.0.QFAEUXM devices.
network
mi CWE-200
4.3
2020-02-10 CVE-2019-13322 Improper Input Validation vulnerability in MI Browser
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Xiaomi Browser Prior to 10.4.0.
network
mi CWE-20
6.8
2020-02-10 CVE-2019-13321 Incorrect Permission Assignment for Critical Resource vulnerability in MI Browser
This vulnerability allows network adjacent attackers to execute arbitrary code on affected installations of Xiaomi Browser Prior to 10.4.0.
5.4
2019-12-20 CVE-2019-15915 Improper Input Validation vulnerability in MI products
An issue was discovered on Xiaomi DGNWG03LM, ZNCZ03LM, MCCGQ01LM, RTCGQ01LM devices.
network
low complexity
mi CWE-20
5.0
2019-12-20 CVE-2019-15914 Improper Input Validation vulnerability in MI products
An issue was discovered on Xiaomi DGNWG03LM, ZNCZ03LM, MCCGQ01LM, WSDCGQ01LM, RTCGQ01LM devices.
network
low complexity
mi CWE-20
5.0
2019-10-23 CVE-2019-18371 Path Traversal vulnerability in MI Millet Router 3G Firmware
An issue was discovered on Xiaomi Mi WiFi R3G devices before 2.28.23-stable.
network
low complexity
mi CWE-22
5.0
2019-09-18 CVE-2019-15843 Unrestricted Upload of File with Dangerous Type vulnerability in MI Xiaomi Millet Firmware 16.3.9.3
A malicious file upload vulnerability was discovered in Xiaomi Millet mobile phones 1-6.3.9.3.
network
mi CWE-434
5.8