Lucene search
K

7 matches found

Cvelist
Cvelist
added 2026/05/26 12:0 a.m.41 views

CVE-2026-48695

FastNetMon Community Edition through 1.2.9 contains an OS command injection vulnerability in the MikroTik router integration plugin. The log function in src/mikrotikplugin/fastnetmonmikrotik.php lines 107-108 constructs shell commands by concatenating the $msg parameter directly into exec calls:...

0.0107EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.10 views

EUVD-2017-17299

Malware in sbrugna...

7.8CVSS7.6AI score0.04207EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2025/05/23 6:27 a.m.11 views

CVE-2024-38861

Improper Certificate Validation in Checkmk Exchange plugin MikroTik allows attackers in MitM position to intercept traffic. This issue affects MikroTik: from 2.0.0 through 2.5.5, from 0.4amk through 2.0a...

7.4CVSS6.9AI score0.00189EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/09/27 12:0 a.m.4 views

Checkmk Exchange plugin MikroTik 安全漏洞

Checkmk Exchange plugin MikroTik is a plugin from Checkmk Inc. A security vulnerability exists in Checkmk Exchange plugin MikroTik versions 2.0.0 through 2.5.5 and 0.4amk through 2.0a, which originates from improper certificate validation and allows an attacker in the position of MitM to intercep...

7.4CVSS6.7AI score0.00189EPSS
Exploits0References2
Gitee
Gitee
added 2021/10/17 12:0 a.m.3 views

Exploit for Path Traversal in Mikrotik Routeros

This is a proof of concept PoC exploit for the critical WinBox vulnerability CVE-2018-14847 that allows for arbitrary file read of plain text passwords. The vulnerability has been fixed, but the project is no longer supported or updated. The exploit is written in Python and uses the socket librar...

9.1CVSS7.1AI score0.96087EPSS
Exploits23
BDU FSTEC
BDU FSTEC
added 2018/11/20 12:0 a.m.7 views

The vulnerability of the Winbox component in the RouterOS operating system of MikroTik allows a hacker to bypass the authentication process.

The vulnerability of the Winbox component in the RouterOS operating system of MikroTik is caused by errors in the authentication mechanism. Exploiting this vulnerability allows a malicious actor to read arbitrary files and bypass the authentication process...

8.6CVSS7.9AI score0.96087EPSS
Exploits23References12Affected Software1
OSV
OSV
added 2017/12/13 4:29 p.m.5 views

CVE-2017-17537

MikroTik RouterBOARD v6.39.2 and v6.40.5 allows an unauthenticated remote attacker to cause a denial of service by connecting to TCP port 53 and sending data that begins with many '\0' characters, possibly related to DNS...

7.5CVSS5.8AI score0.01619EPSS
Exploits0References1
Rows per page
Query Builder