VYPR

AX9000

by Xiaomi

CVEs (2)

  • CVE-2023-26315Aug 26, 2024
    risk 0.05cvss epss 0.19

    The Xiaomi router AX9000 has a post-authentication command injection vulnerability. This vulnerability is caused by the lack of input filtering, allowing an attacker to exploit it to obtain root access to the device.

  • CVE-2024-45348Sep 23, 2024
    risk 0.00cvss epss 0.01

    Xiaomi Router AX9000 has a post-authorization command injection vulnerability. This vulnerability is caused by the lack of validation of user input, and an attacker can exploit this vulnerability to execute arbitrary code.