CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2023-27346 – TP-Link AX1800 Firmware Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-27346
31 Mar 2023 — TP-Link AX1800 Firmware Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of TP-Link AX1800 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the parsing of firmware images. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer. • https://www.zerodayinitiative.com/advisories/ZDI-23-377 • CWE-121: Stack-based Buffer Overflow •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2020-14140
https://notcve.org/view.php?id=CVE-2020-14140
29 Mar 2023 — When Xiaomi router firmware is updated in 2020, there is an unauthenticated API that can reveal WIFI password vulnerability. This vulnerability is caused by the lack of access control policies on some API interfaces. Attackers can exploit this vulnerability to enter the background and execute background command injection. • https://trust.mi.com/zh-CN/misrc/bulletins/advisory?cveId=506 • CWE-306: Missing Authentication for Critical Function •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2020-14129
https://notcve.org/view.php?id=CVE-2020-14129
11 Oct 2022 — A logic vulnerability exists in a Xiaomi product. The vulnerability is caused by an identity verification failure, which can be exploited by an attacker who can obtain a brief elevation of privilege. Se presenta una vulnerabilidad lógica en un producto de Xiaomi. La vulnerabilidad está causada por un fallo de verificación de identidad, que puede ser explotado por un atacante que puede obtener una breve elevación de privilegios • https://trust.mi.com/misrc/bulletins/advisory?cveId=155 •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2020-14131
https://notcve.org/view.php?id=CVE-2020-14131
11 Oct 2022 — The Xiaomi Security Center expresses heartfelt thanks to ADLab of VenusTech ! At the same time, we also welcome more outstanding and professional security experts and security teams to join the Mi Security Center (MiSRC) to jointly ensure the safe access of millions of Xiaomi users worldwide Life. El Centro de Seguridad de Xiaomi expresa su más sincero agradecimiento a ADLab de VenusTech. Al mismo tiempo, también damos la bienvenida a más expertos en seguridad y equipos de seguridad excepcionales y profesio... • https://trust.mi.com/misrc/bulletins/advisory?cveId=153 •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2020-14114
https://notcve.org/view.php?id=CVE-2020-14114
22 Jul 2022 — information leakage vulnerability exists in the Xiaomi SmartHome APP. This vulnerability is caused by illegal calls of some sensitive JS interfaces, which can be exploited by attackers to leak sensitive information. Se presenta una vulnerabilidad de filtrado de información en la APP Xiaomi SmartHome. Esta vulnerabilidad es causada por las llamadas ilegales de algunas interfaces JS confidenciales, que pueden ser explotadas por los atacantes para filtrar información confidencial • https://trust.mi.com/zh-CN/misrc/bulletins/advisory?cveId=277 •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2020-14126
https://notcve.org/view.php?id=CVE-2020-14126
22 Jul 2022 — Information leakage vulnerability exists in the Mi Sound APP. This vulnerability is caused by illegal calls of some sensitive JS interfaces, which can be exploited by attackers to leak sensitive information. Se presenta una vulnerabilidad de filtrado de información en la APP Mi Sound. Esta vulnerabilidad es causada por las llamadas ilegales de algunas interfaces JS confidenciales, que pueden ser explotadas por los atacantes para filtrar información confidencial • https://trust.mi.com/zh-CN/misrc/bulletins/advisory?cveId=278 •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2020-14127
https://notcve.org/view.php?id=CVE-2020-14127
14 Jul 2022 — A denial of service vulnerability exists in some Xiaomi models of phones. The vulnerability is caused by heap overflow and can be exploited by attackers to make remote denial of service. Se presenta una vulnerabilidad de denegación de servicio en algunos modelos de teléfonos Xiaomi. La vulnerabilidad es causada por un desbordamiento de la pila y puede ser explotada por atacantes para hacer una denegación de servicio remota • https://trust.mi.com/zh-CN/misrc/bulletins/advisory?cveId=169 • CWE-787: Out-of-bounds Write •
CVSS: 8.8EPSS: 0%CPEs: 2EXPL: 1CVE-2022-31277
https://notcve.org/view.php?id=CVE-2022-31277
16 Jun 2022 — Xiaomi Lamp 1 v2.0.4_0066 was discovered to be vulnerable to replay attacks. This allows attackers to to bypass the expected access restrictions and gain control of the switch and other functions via a crafted POST request. Se ha detectado que Xiaomi Lamp 1 versión v2.0.4_0066, es vulnerable a ataques de repetición. Esto permite a atacantes omitir las restricciones de acceso previstas y conseguir el control del conmutador y otras funciones por medio de una petición POST diseñada • https://github.com/skyedai910/Vuln/tree/master/xiaomi_lamp_1/replay_attack_0 • CWE-294: Authentication Bypass by Capture-replay •
CVSS: 7.5EPSS: 9%CPEs: 3EXPL: 0CVE-2020-14125
https://notcve.org/view.php?id=CVE-2020-14125
08 Jun 2022 — A denial of service vulnerability exists in some Xiaomi models of phones. The vulnerability is caused by out-of-bound read/write and can be exploited by attackers to make denial of service. Se presenta una vulnerabilidad de denegación de servicio en algunos modelos de teléfonos Xiaomi. La vulnerabilidad es causada por una lectura/escritura fuera de límites y puede ser explotada por atacantes para hacer una denegación de servicio • https://trust.mi.com/zh-CN/misrc/bulletins/advisory?cveId=170 • CWE-125: Out-of-bounds Read CWE-787: Out-of-bounds Write •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2020-14123
https://notcve.org/view.php?id=CVE-2020-14123
22 Apr 2022 — There is a pointer double free vulnerability in Some MIUI Services. When a function is called, the memory pointer is copied to two function modules, and an attacker can cause the pointer to be repeatedly released through malicious operations, resulting in the affected module crashing and affecting normal functionality, and if successfully exploited the vulnerability can cause elevation of privileges. Se presenta una vulnerabilidad de doble liberación de punteros en algunos servicios de MIUI. Cuando es llama... • https://trust.mi.com/zh-CN/misrc/bulletins/advisory?cveId=134 • CWE-415: Double Free •