MikroTik RouterOS Classic Buffer Overflow (CVE-2020-22845)

A buffer overflow in Mikrotik RouterOS 6.47 allows unauthenticated attackers to cause a denial of service DOS via crafted FTP requests. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc...

MikroTik RouterBOARD Improper Input Validation (CVE-2017-17537)

MikroTik RouterBOARD v6.39.2 and v6.40.5 allows an unauthenticated remote attacker to cause a denial of service by connecting to TCP port 53 and sending data that begins with many '\0' characters, possibly related to DNS. This plugin only works with Tenable.ot. Please visit...

MikroTik RouterOS Channel Accessible by Non-Endpoint (CVE-2019-3981)

MikroTik Winbox 3.20 and below is vulnerable to man in the middle attacks. A man in the middle can downgrade the client's authentication protocol and recover the user's username and MD5 hashed password. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-...

MikroTik RouterOs Reachable Assertion (CVE-2022-36522)

Mikrotik RouterOs through stable v6.48.3 was discovered to contain an assertion failure in the component /advanced-tools/nova/bin/netwatch. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted packet. This plugin only works with Tenable.ot. Please visit...

MikroTik RouterOS Improper Certificate Validation (CVE-2018-10066)

An issue was discovered in MikroTik RouterOS 6.41.4. Missing OpenVPN server certificate verification allows a remote unauthenticated attacker capable of intercepting client traffic to act as a malicious OpenVPN server. This may allow the attacker to gain access to the client's internal network fo...

MikroTik RouterOS Uncontrolled Resource Consumption (CVE-2018-1157)

Mikrotik RouterOS before 6.42.7 and 6.40.9 is vulnerable to a memory exhaustion vulnerability. An authenticated remote attacker can crash the HTTP server and in some circumstances reboot the system via a crafted HTTP POST request. This plugin only works with Tenable.ot. Please visit...

MikroTik RouterOS Uncontrolled Resource Consumption (CVE-2012-6050)

The winbox service in MikroTik RouterOS 5.15 and earlier allows remote attackers to cause a denial of service CPU consumption, read the router version, and possibly have other impacts via a request to download the router's DLLs or plugins, as demonstrated by roteros.dll. This plugin only works wi...

MikroTik RouterOS Missing Encryption of Sensitive Data (CVE-2017-6297)

The L2TP Client in MikroTik RouterOS versions 6.83.3 and 6.37.4 does not enable IPsec encryption after a reboot, which allows man-in-the- middle attackers to view transmitted data unencrypted and gain access to networks on the L2TP server by monitoring the packets for the transmitted data and...

MikroTik RouterOS Uncontrolled Recursion (CVE-2019-13955)

Mikrotik RouterOS before 6.44.5 long-term release tree is vulnerable to stack exhaustion. By sending a crafted HTTP request, an authenticated remote attacker can crash the HTTP server via recursive parsing of JSON. Malicious code cannot be injected. This plugin only works with Tenable.ot. Please...

MikroTik RouterOS Integer Underflow (CVE-2019-16160)

An integer underflow in the SMB server of MikroTik RouterOS before 6.45.5 allows remote unauthenticated attackers to crash the service. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc...

MikroTik RouterOS Improper Restriction of Operations within the Bounds of a Memory Buffer (CVE-2018-7445)

A buffer overflow was found in the MikroTik RouterOS SMB service when processing NetBIOS session request messages. Remote attackers with access to the service can exploit this vulnerability and gain code execution on the system. The overflow occurs before authentication takes place, so it is...

MikroTik RouterOs Reachable Assertion (CVE-2020-20211)

Mikrotik RouterOs 6.44.5 long-term tree suffers from an assertion failure vulnerability in the /nova/bin/console process. An authenticated remote attacker can cause a Denial of Service due to an assertion failure via a crafted packet. This plugin only works with Tenable.ot. Please visit...

MikroTik RouterOs Out-of-bounds Write (CVE-2020-20246)

Mikrotik RouterOs stable 6.46.3 suffers from a memory corruption vulnerability in the mactel process. An authenticated remote attacker can cause a Denial of Service due to improper memory access. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for...

Mikro Tik (CVE-2020-20247)

Mikrotik RouterOs before 6.46.5 stable tree suffers from a memory corruption vulnerability in the /nova/bin/traceroute process. An authenticated remote attacker can cause a Denial of Service due via the loop counter variable. This plugin only works with Tenable.ot. Please visit...

MikroTik RouterOS Improper Restriction of Operations within the Bounds of a Memory Buffer (CVE-2018-1159)

Mikrotik RouterOS before 6.42.7 and 6.40.9 is vulnerable to a memory corruption vulnerability. An authenticated remote attacker can crash the HTTP server by rapidly authenticating and disconnecting. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot f...

MikroTik RouterOS Confused Deputy (CVE-2019-3924)

MikroTik RouterOS before 6.43.12 stable and 6.42.12 long-term is vulnerable to an intermediary vulnerability. The software will execute user defined network requests to both WAN and LAN clients. A remote unauthenticated attacker can use this vulnerability to bypass the router's firewall or for...

MikroTik RouterOs Uncontrolled Resource Consumption (CVE-2020-20248)

Mikrotik RouterOs before stable 6.47 suffers from an uncontrolled resource consumption in the memtest process. An authenticated remote attacker can cause a Denial of Service due to overloading the systems CPU. This plugin only works with Tenable.ot. Please visit...

MikroTik RouterOs Out-of-bounds Write (CVE-2020-20231)

Mikrotik RouterOs through stable version 6.48.3 suffers from a memory corruption vulnerability in the /nova/bin/detnet process. An authenticated remote attacker can cause a Denial of Service NULL pointer dereference. This plugin only works with Tenable.ot. Please visit...

MikroTik RouterOs Uncontrolled Resource Consumption (CVE-2020-20217)

Mikrotik RouterOs before 6.47 stable tree suffers from an uncontrolled resource consumption vulnerability in the /nova/bin/route process. An authenticated remote attacker can cause a Denial of Service due to overloading the systems CPU. This plugin only works with Tenable.ot. Please visit...

MikroTik RouterOs Improper Restriction of Operations within the Bounds of a Memory Buffer (CVE-2020-20220)

Mikrotik RouterOs prior to stable 6.47 suffers from a memory corruption vulnerability in the /nova/bin/bfd process. An authenticated remote attacker can cause a Denial of Service NULL pointer dereference. This plugin only works with Tenable.ot. Please visit...