Null pointer dereference

2021-07-1414:15:00

PRIOn knowledge base

www.prio-n.com

0.002 Low

EPSS

Percentile

57.2%

JSON

Mikrotik RouterOs through stable version 6.48.3 suffers from a memory corruption vulnerability in the /nova/bin/detnet process. An authenticated remote attacker can cause a Denial of Service (NULL pointer dereference).

CPENameOperatorVersion
routerosge6.44.6
routerosle6.48.3

CPE	Name	Operator	Version
	routeros	ge	6.44.6
	routeros	le	6.48.3

References

github.com/cq674350529/pocs_slides/blob/master/advisory/MikroTik/CVE-2020-20231/README.md

mikrotik.com/

0.002 Low

EPSS

Percentile

57.2%

JSON

Related for PRION:CVE-2020-20231