Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-37663

Redmi router RB03 v1.0.57 is vulnerable to forged ICMP redirect message attacks. An attacker in the same WLAN as the victim can hijack the traffic between the victim and any remote server by sending out forged ICMP redirect messages.

Published

2024-06-17T18:15:17.653

Last Modified

2025-07-09T15:13:50.520

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 4.1 (MEDIUM)

Weaknesses

Type: Secondary
CWE-940

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	mi	redmi_ax6s_firmware	1.0.57	Yes
Hardware	mi	redmi_ax6s	-	No

References

https://github.com/ouuan/router-vuln-report/blob/master/icmp-redirect/redmi-rb03-redirect.md Exploit, Third Party Advisory ([email protected])
https://github.com/ouuan/router-vuln-report/blob/master/icmp-redirect/redmi-rb03-redirect.md Exploit, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)