{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-11T10:48:09.943","vulnerabilities":[{"cve":{"id":"CVE-2020-14109","sourceIdentifier":"security@xiaomi.com","published":"2021-09-16T12:15:07.087","lastModified":"2024-11-21T05:02:40.117","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"There is command injection in the meshd program in the routing system, resulting in command execution under administrator authority on Xiaomi router AX3600 with ROM version =< 1.1.12"},{"lang":"es","value":"Se presenta una inyección de comandos en el programa meshd en el sistema de enrutamiento, resultando en una ejecución de comandos bajo la autoridad del administrador en Xiaomi router AX3600 con la versión de ROM anteriores a 1.1.12, incluyéndola"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H","baseScore":7.2,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.2,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:C/I:C/A:C","baseScore":9.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":8.0,"impactScore":10.0,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-77"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:mi:ax3600_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"1.1.12","matchCriteriaId":"96775913-9D30-49BB-AAE2-8418F5994AF3"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:mi:ax3600:-:*:*:*:*:*:*:*","matchCriteriaId":"FCDA6605-7C59-41C2-BA6E-65268D15FA21"}]}]}],"references":[{"url":"https://privacy.mi.com/trust#/security/vulnerability-management/vulnerability-announcement/detail?id=25&locale=zh","source":"security@xiaomi.com","tags":["Broken Link"]},{"url":"https://privacy.mi.com/trust#/security/vulnerability-management/vulnerability-announcement/detail?id=25&locale=zh","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link"]}]}}]}