VYPR

RM1800

by Xiaomi

CVEs (3)

  • CVE-2020-14099Apr 8, 2021
    risk 0.00cvss epss 0.01

    On Xiaomi router AX1800 rom version < 1.0.336 and RM1800 root version < 1.0.26, the encryption scheme for a user's backup files uses hard-coded keys, which can expose sensitive information such as a user's password.

  • CVE-2020-14098Jan 13, 2021
    risk 0.00cvss epss 0.01

    The login verification can be bypassed by using the problem that the time is not synchronized after the router restarts. This affects Xiaomi router AX1800rom version < 1.0.336 and Xiaomi route RM1800 root version < 1.0.26.

  • CVE-2020-14101Jan 13, 2021
    risk 0.00cvss epss 0.01

    The data collection SDK of the router web management interface caused the leakage of the token. This affects Xiaomi router AX1800rom version < 1.0.336 and Xiaomi route RM1800 root version < 1.0.26.