TCP DoS/Hijacking Vulnerability Affects Xiaomi Redmi Router RB03

CVE-2024-37664

Summary

The Redmi Router RB03 v1.0.57 has a significant vulnerability that allows attackers in the same wireless local area network (WLAN) to disrupt or hijack network traffic. By sending specially crafted TCP RST messages, an attacker can manipulate the NAT (Network Address Translation) mappings within the router. This manipulation can lead to unauthorized disconnections or interception of traffic between the victim's device and remote servers. Such an attack poses serious privacy and security risks, making it essential for users of this router model to be aware of the potential threats.

References