Mi Miwifi Os vulnerabilities
3 known vulnerabilities affecting mi/miwifi_os.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
1
Severity breakdown
HIGH2MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2018-13023P1HIGHCVSS 8.8Exploitedv2.22.152018-11-27
CVE-2018-13023 [HIGH] CWE-78 CVE-2018-13023: System command injection vulnerability in wifi_access in Xiaomi Mi Router 3 version 2.22.15 allows a
System command injection vulnerability in wifi_access in Xiaomi Mi Router 3 version 2.22.15 allows attackers to execute system commands via the "timeout" URL parameter.
nvd
CVE-2018-16130P2HIGHCVSS 8.8v2.22.152018-11-27
CVE-2018-16130 [HIGH] CWE-78 CVE-2018-16130: System command injection in request_mitv in Xiaomi Mi Router 3 version 2.22.15 allows attackers to e
System command injection in request_mitv in Xiaomi Mi Router 3 version 2.22.15 allows attackers to execute arbitrary system commands via the "payload" URL parameter.
nvd
CVE-2018-13022P4MEDIUMCVSS 6.1v2.22.152018-11-27
CVE-2018-13022 [MEDIUM] CWE-79 CVE-2018-13022: Cross-site scripting vulnerability in the API 404 page on Xiaomi Mi Router 3 version 2.22.15 allows
Cross-site scripting vulnerability in the API 404 page on Xiaomi Mi Router 3 version 2.22.15 allows attackers to execute arbitrary JavaScript via a modified URL path.
nvd