Security Advisory

CVE-2018-14010

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2018-07-15 03:00:00

Last updated 2024-08-05 09:21:40

Assigner mitre

State PUBLISHED

Description

OS command injection in the guest Wi-Fi settings feature in /cgi-bin/luci on Xiaomi R3P before 2.14.5, R3C before 2.12.15, R3 before 2.22.15, and R3D before 2.26.4 devices allows an attacker to execute any command via crafted JSON data.

← Browse all CVEs View on cve.org ↗