Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-37664

Redmi router RB03 v1.0.57 is vulnerable to TCP DoS or hijacking attacks. An attacker in the same WLAN as the victim can disconnect or hijack the traffic between the victim and any remote server by sending out forged TCP RST messages to evict NAT mappings in the router.

Published

2024-06-17T18:15:17.743

Last Modified

2025-07-09T15:05:21.807

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 5.2 (MEDIUM)

Weaknesses

Type: Secondary
CWE-940

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	mi	redmi_ax6s_firmware	1.0.57	Yes
Hardware	mi	redmi_ax6s	-	No

References

https://github.com/ouuan/router-vuln-report/blob/master/nat-rst/redmi-rb03-nat-rst.md Exploit, Third Party Advisory ([email protected])
https://github.com/ouuan/router-vuln-report/blob/master/nat-rst/redmi-rb03-nat-rst.md Exploit, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)