2 matches found
CVE-2021-27221
MikroTik RouterOS 6.47.9 allows remote authenticated ftp users to create or overwrite arbitrary .rsc files via the /export command. NOTE: the vendor's position is that this is intended behavior because of how user policies work...
CVE-2021-27221
CVE-2021-27221 — MikroTik RouterOS 6.47.9 permits remote authenticated FTP users to create or overwrite arbitrary .rsc files via the /export command. The issue is framed by MikroTik as intended behavior due to user policy design, and multiple connected sources corroborate the impact on file creat...