CVE-2023-26315 - OpenCVE

The Xiaomi router AX9000 has a post-authentication command injection vulnerability. This vulnerability is caused by the lack of input filtering, allowing an attacker to exploit it to obtain root access to the device.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact None

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Exploitation none

Automatable no

Technical Impact partial

Vendors	Products
Mi	Ax9000 Ax9000 Firmware

Configuration 1 [-]

AND

cpe:2.3:o:mi:ax9000_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:mi:ax9000:-:*:*:*:*:*:*:*

No data.

References

Link	Providers
https://trust.mi.com/zh-CN/misrc/bulletins/advisory?cveId=546

History

Fri, 06 Sep 2024 22:45:00 +0000

Type	Values Removed	Values Added
First Time appeared		Mi Mi ax9000 Mi ax9000 Firmware
Weaknesses		CWE-77
CPEs		cpe:2.3:h:mi:ax9000:-:::::::* cpe:2.3:o:mi:ax9000_firmware::::::::
Vendors & Products		Mi Mi ax9000 Mi ax9000 Firmware

Mon, 26 Aug 2024 18:30:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Mon, 26 Aug 2024 12:00:00 +0000

Type	Values Removed	Values Added
Description		The Xiaomi router AX9000 has a post-authentication command injection vulnerability. This vulnerability is caused by the lack of input filtering, allowing an attacker to exploit it to obtain root access to the device.
Title		Xiaomi router has a command injection vulnerability after authorization
References		https://trust.mi.com/zh-CN/misrc/bulletins/advisory?cveId=546
Metrics		cvssV3_1 `{'score': 6.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H'}`

MITRE

Status: PUBLISHED

Assigner: Xiaomi

Published: 2024-08-26T11:47:17.867Z

Updated: 2024-08-26T17:40:11.256Z

Reserved: 2023-02-22T16:59:28.182Z

Link: CVE-2023-26315

Vulnrichment

Updated: 2024-08-26T17:40:07.193Z

NVD

Status : Analyzed

Published: 2024-08-26T12:15:05.387

Modified: 2024-09-06T22:25:54.637

Link: CVE-2023-26315

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2023-26315", "assignerOrgId": "b57733aa-7326-4f07-8e09-0be8e0df1909", "state": "PUBLISHED", "assignerShortName": "Xiaomi", "dateReserved": "2023-02-22T16:59:28.182Z", "datePublished": "2024-08-26T11:47:17.867Z", "dateUpdated": "2024-08-26T17:40:11.256Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "affected", "product": "Router AX9000", "vendor": "Xiaomi", "versions": [{"changes": [{"at": "1.0.174", "status": "unaffected"}], "lessThanOrEqual": "1.0.168", "status": "affected", "version": "1.0.0", "versionType": "custom"}]}], "datePublic": "2023-06-06T02:00:00.000Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "The Xiaomi router AX9000 has a post-authentication command injection vulnerability. This vulnerability is caused by the lack of input filtering, allowing an attacker to exploit it to obtain root access to the device."}], "value": "The Xiaomi router AX9000 has a post-authentication command injection vulnerability. This vulnerability is caused by the lack of input filtering, allowing an attacker to exploit it to obtain root access to the device."}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "providerMetadata": {"orgId": "b57733aa-7326-4f07-8e09-0be8e0df1909", "shortName": "Xiaomi", "dateUpdated": "2024-08-26T11:47:17.867Z"}, "references": [{"url": "https://trust.mi.com/zh-CN/misrc/bulletins/advisory?cveId=546"}], "source": {"discovery": "EXTERNAL"}, "title": "Xiaomi router has a command injection vulnerability after authorization", "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-08-26T17:40:00.468306Z", "id": "CVE-2023-26315", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-08-26T17:40:11.256Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2023-26315", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-08-26T17:40:00.468306Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-08-26T17:40:07.193Z"}}], "cna": {"title": "Xiaomi router has a command injection vulnerability after authorization", "source": {"discovery": "EXTERNAL"}, "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.5, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "HIGH", "confidentialityImpact": "NONE"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "Xiaomi", "product": "Router AX9000", "versions": [{"status": "affected", "changes": [{"at": "1.0.174", "status": "unaffected"}], "version": "1.0.0", "versionType": "custom", "lessThanOrEqual": "1.0.168"}], "defaultStatus": "affected"}], "datePublic": "2023-06-06T02:00:00.000Z", "references": [{"url": "https://trust.mi.com/zh-CN/misrc/bulletins/advisory?cveId=546"}], "x_generator": {"engine": "Vulnogram 0.1.0-dev"}, "descriptions": [{"lang": "en", "value": "The Xiaomi router AX9000 has a post-authentication command injection vulnerability. This vulnerability is caused by the lack of input filtering, allowing an attacker to exploit it to obtain root access to the device.", "supportingMedia": [{"type": "text/html", "value": "The Xiaomi router AX9000 has a post-authentication command injection vulnerability. This vulnerability is caused by the lack of input filtering, allowing an attacker to exploit it to obtain root access to the device.", "base64": false}]}], "providerMetadata": {"orgId": "b57733aa-7326-4f07-8e09-0be8e0df1909", "shortName": "Xiaomi", "dateUpdated": "2024-08-26T11:47:17.867Z"}}}, "cveMetadata": {"cveId": "CVE-2023-26315", "state": "PUBLISHED", "dateUpdated": "2024-08-26T17:40:11.256Z", "dateReserved": "2023-02-22T16:59:28.182Z", "assignerOrgId": "b57733aa-7326-4f07-8e09-0be8e0df1909", "datePublished": "2024-08-26T11:47:17.867Z", "assignerShortName": "Xiaomi"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:mi:ax9000_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "5A0CFBA2-2F5A-48AD-BD76-3AE1B9BE45DB", "versionEndExcluding": "1.0.174", "versionStartIncluding": "1.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:mi:ax9000:-:*:*:*:*:*:*:*", "matchCriteriaId": "A5F71A5A-A7D4-4218-B371-25BE040BB320", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "The Xiaomi router AX9000 has a post-authentication command injection vulnerability. This vulnerability is caused by the lack of input filtering, allowing an attacker to exploit it to obtain root access to the device."}, {"lang": "es", "value": "El enrutador Xiaomi AX9000 tiene una vulnerabilidad de inyecci\u00f3n de comando posterior a la autenticaci\u00f3n. Esta vulnerabilidad se debe a la falta de filtrado de entrada, lo que permite a un atacante aprovecharla para obtener acceso ra\u00edz al dispositivo."}], "id": "CVE-2023-26315", "lastModified": "2024-09-06T22:25:54.637", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.2, "impactScore": 5.2, "source": "security@xiaomi.com", "type": "Secondary"}]}, "published": "2024-08-26T12:15:05.387", "references": [{"source": "security@xiaomi.com", "tags": ["Vendor Advisory"], "url": "https://trust.mi.com/zh-CN/misrc/bulletins/advisory?cveId=546"}], "sourceIdentifier": "security@xiaomi.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-77"}], "source": "nvd@nist.gov", "type": "Primary"}]}