993 matches found
MikroTik RouterOS 安全漏洞
MikroTik RouterOS is a Linux-based router operating system developed by the Latvian company MikroTik. The system can be deployed in PCs to enable them to provide router functionality. A security vulnerability exists in MikroTik RouterOS versions v6.43 through v7.16.1, which stems from a differenc...
CVE-2024-54772
An issue was discovered in the Winbox service of MikroTik RouterOS long-term release v6.43.13 through v6.49.13 and stable v6.43 through v7.17.2. A patch is available in the stable release v6.49.18. A discrepancy in response size between connection attempts made with a valid username and those wit...
CVE-2024-54772
An issue was discovered in the Winbox service of MikroTik RouterOS long-term release v6.43.13 through v6.49.13 and stable v6.43 through v7.17.2. A patch is available in the stable release v6.49.18. A discrepancy in response size between connection attempts made with a valid username and those wit...
Exploit for Observable Timing Discrepancy in Mikrotik Routeros
CVE-2024-54772 MikroTik-RouterOS Username Enum This repo con...
PT-2025-6403
Name of the Vulnerable Software and Affected Versions MikroTik RouterOS versions 6.43 through 7.16.1 Description A discrepancy in response times between connection attempts made with a valid username and those with an invalid username in the Winbox service allows attackers to enumerate valid...
PT-2025-23197 · Mikrotik · Mikrotik Routeros
Name of the Vulnerable Software and Affected Versions: MikroTik RouterOS version 6.40.5 Description: The SMB service in MikroTik RouterOS contains a memory corruption issue. Remote, unauthenticated attackers can exploit this by sending specially crafted packets, triggering a null pointer...
VulnCheck KEV: CVE-2023-30799
MikroTik RouterOS stable before 6.49.7 and long-term through 6.48.6 are vulnerable to a privilege escalation issue. A remote and authenticated attacker can escalate privileges from admin to super-admin on the Winbox or HTTP interface. The attacker can abuse this vulnerability to execute arbitrary...
Exploit for Out-of-bounds Write in Mikrotik Routeros
cve-2023-30800-multithread-doser Multithredded DoS Python Scri...
MikroTik RouterOS < 6.49.12, 7.x < 7.13.3 DoS Vulnerability (Loop DoS)
MikroTik RouterOS is prone to a denial of service DoS vulnerability dubbed SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
OVHcloud Hit with Record 840 Million PPS DDoS Attack Using MikroTik Routers
French cloud computing firm OVHcloud said it mitigated a record-breaking distributed denial-of-service DDoS attack in April 2024 that reached a packet rate of 840 million packets per second Mpps. This is just above the previous record of 809 million Mpps reported by Akamai as targeting a large...
CVE-2023-32154
Mikrotik RouterOS RADVD Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Mikrotik RouterOS. Authentication is not required to exploit this vulnerability. The specific flaw exists...
CVE-2023-32154
Mikrotik RouterOS RADVD Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Mikrotik RouterOS. Authentication is not required to exploit this vulnerability. The specific flaw exists...
CVE-2023-32154
Mikrotik RouterOS RADVD Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Mikrotik RouterOS. Authentication is not required to exploit this vulnerability. The specific flaw exists...
CVE-2023-32154 Mikrotik RouterOS RADVD Out-Of-Bounds Write Remote Code Execution Vulnerability
Mikrotik RouterOS RADVD Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Mikrotik RouterOS. Authentication is not required to exploit this vulnerability. The specific flaw exists...
CVE-2023-32154
CVE-2023-32154 affects MikroTik RouterOS and its Router Advertisement Daemon (RADVD). The vulnerability is an out-of-bounds write caused by insufficient validation of user-supplied data, enabling network-adjacent attackers to execute code with root privileges. Exploitation requires no authenticat...
CVE-2023-32154 Mikrotik RouterOS RADVD Out-Of-Bounds Write Remote Code Execution Vulnerability
Mikrotik RouterOS RADVD Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Mikrotik RouterOS. Authentication is not required to exploit this vulnerability. The specific flaw exists...
MikroTik RouterOS 安全漏洞
MikroTik RouterOS is a Linux-based router operating system developed by the Latvian company MikroTik. The system can be deployed in PCs to enable them to provide router functionality. MikroTik RouterOS suffers from a security vulnerability that stems from the presence of an out-of-bounds write to...
PT-2024-2453
Name of the Vulnerable Software and Affected Versions Mikrotik RouterOS x86 versions 6.40.5 through 6.49.10 Description An issue in the processing of input data allows a remote attacker to cause a denial of service, resulting in a device crash. This is achieved by sending crafted packet data to t...
The vulnerability of the RouterOS operating system in MikroTik routers, related to errors in processing input data, allows a hacker to cause a service failure.
The vulnerability of the RouterOS operating system for MikroTik lies in errors in processing input data. Exploiting this vulnerability allows a malicious actor to cause service failure by sending a specially crafted network packet...
RouterOS 6.40.5 - 6.44 and 6.48.1 - 6.49.10 - Denial of Service Exploit
Exploit Title: CVE-2024-27686: RouterOS-SMB-DOS Exploit Author: ice-wzl, Solstice Cyber Solutions Vendor Homepage: https://mikrotik.com/ Software Link: https://mikrotik.com/download/archive Version: RouterOS devices ranging from 6.40.5 - 6.44 and 6.48.1 - 6.49.10 Tested on: RouterOS 6.40.5 - 6.44...