CVE-2020-14101
First published: Wed Jan 13 2021(Updated: )
The data collection SDK of the router web management interface caused the leakage of the token. This affects Xiaomi router AX1800rom version < 1.0.336 and Xiaomi route RM1800 root version < 1.0.26.
Credit: security@xiaomi.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Mi Ax1800 Firmware | <1.0.336 | |
| Mi Ax1800 | ||
| Mi Rm1800 Firmware | <1.0.26 | |
| Mi Rm1800 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2020-14101?
CVE-2020-14101 is a vulnerability in the data collection SDK of the router web management interface of Xiaomi router AX1800rom version < 1.0.336 and Xiaomi route RM1800 root version < 1.0.26.
How does CVE-2020-14101 affect Xiaomi router AX1800rom?
CVE-2020-14101 affects Xiaomi router AX1800rom version < 1.0.336 by causing the leakage of the token.
How does CVE-2020-14101 affect Xiaomi router RM1800 root?
CVE-2020-14101 affects Xiaomi router RM1800 root version < 1.0.26 by causing the leakage of the token.
What is the severity of CVE-2020-14101?
CVE-2020-14101 has a severity of 7.5 (high).
How can I fix CVE-2020-14101?
To fix CVE-2020-14101, update your Xiaomi router AX1800rom firmware to version 1.0.336 or above, or update your Xiaomi router RM1800 root firmware to version 1.0.26 or above.
- collector/nvd-index
- agent/severity
- agent/references
- agent/tags
- agent/type
- agent/author
- agent/description
- agent/event
- agent/softwarecombine
- agent/first-publish-date
- agent/last-modified-date
- collector/mitre-cve
- source/MITRE
- vendor/mi
- canonical/mi ax1800 firmware
- canonical/mi ax1800
- canonical/mi rm1800 firmware
- canonical/mi rm1800