Design/Logic Flaw

RouterOS 6.45.6 Stable, RouterOS 6.44.5 Long-term, and below insufficiently validate where upgrade packages are download from when using the autoupgrade feature. Therefore, a remote attacker can trick the router into "upgrading" to an older version of RouterOS and possibly reseting all the system...

Memory corruption

RouterOS 6.45.6 Stable, RouterOS 6.44.5 Long-term, and below are vulnerable to an arbitrary directory creation vulnerability via the upgrade package's name field. If an authenticated user installs a malicious package then a directory could be created and the developer shell could be enabled...

Default configuration

RouterOS versions 6.45.6 Stable, 6.44.5 Long-term, and below are vulnerable to a DNS unrelated data attack. The router adds all A records to its DNS cache even when the records are unrelated to the domain that was queried. Therefore, a remote attacker controlled DNS server can poison the router's...

CVE-2019-3977

RouterOS 6.45.6 Stable, RouterOS 6.44.5 Long-term, and below insufficiently validate where upgrade packages are download from when using the autoupgrade feature. Therefore, a remote attacker can trick the router into "upgrading" to an older version of RouterOS and possibly reseting all the system...

CVE-2019-3977

CVE-2019-3977 affects MikroTik RouterOS. The vulnerability arises from insufficient validation of the origin of upgrade packages during autoupgrade, allowing a remote attacker to trick a device into upgrading to an older RouterOS version and potentially reset all usernames and passwords. Document...

CVE-2019-3979

RouterOS versions 6.45.6 Stable, 6.44.5 Long-term, and below are vulnerable to a DNS unrelated data attack. The router adds all A records to its DNS cache even when the records are unrelated to the domain that was queried. Therefore, a remote attacker controlled DNS server can poison the router's...

CVE-2019-3979

CVE-2019-3979 affects MikroTik RouterOS versions 6.45.6 Stable, 6.44.5 Long-term, and earlier builds. The issue is a DNS cache-poisoning vulnerability where the router adds all A records from DNS responses to its cache, even if unrelated to the queried domain. A remote attacker-controlled DNS ser...

CVE-2019-3978

RouterOS versions 6.45.6 Stable, 6.44.5 Long-term, and below allow remote unauthenticated attackers to trigger DNS queries via port 8291. The queries are sent from the router to a server of the attacker's choice. The DNS responses are cached by the router, potentially resulting in cache poisoning...

CVE-2019-3978

MikroTik RouterOS CVE-2019-3978 affects RouterOS before 6.44.6 LTS or 6.45.x before 6.45.7. An unauthenticated remote attacker can trigger DNS queries via port 8291 (Winbox); DNS responses are cached, enabling cache poisoning. Remediation per sources: upgrade to RouterOS 6.44.6 LTS or 6.45.7 (or ...

CVE-2019-3976

RouterOS 6.45.6 Stable, RouterOS 6.44.5 Long-term, and below are vulnerable to an arbitrary directory creation vulnerability via the upgrade package's name field. If an authenticated user installs a malicious package then a directory could be created and the developer shell could be enabled...

CVE-2019-3976

The CVE-2019-3976 entry concerns MikroTik RouterOS (RouterOS) versions 6.45.6 Stable, 6.44.5 Long-term, and earlier. The vulnerability is a relative path traversal in the upgrade package handling (package name field), which allows an authenticated user who installs a malicious package to create a...

MikroTik RouterOS Detection (PPTP)

PPTP based detection of MikroTik RouterOS. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.108683...

Exploit for Path Traversal in Mikrotik Routeros

Mikrotik Login Exploit PoC Proof of Concept dari vulnerabili...

The vulnerability of the RouterOS operating system in MikroTik routers allows a hacker to cause a service failure.

The vulnerability of the RouterOS operating system for MikroTik routers is related to an uncontrolled consumption of resources. Exploiting this vulnerability can allow a malicious actor, operating remotely, to cause service failures by sending specially crafted HTTP requests...

The vulnerability of the RouterOS operating system in MikroTik routers stems from insufficient validation of input data. This allows a hacker to delete arbitrary files, gain access to the target system with administrator privileges, and change the administrator password.

The vulnerability of the RouterOS operating system for MikroTik exists due to insufficient checking of input data. Exploiting this vulnerability allows a malicious actor to delete arbitrary files, gain access to the target system with administrator privileges, and change the administrator passwor...

MikroTik RouterOS File Deletion Vulnerability (CVE-2019-15055)

MikroTik RouterOS is prone to an authenticated file deletion vulnerability. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

CVE-2019-15055

MikroTik RouterOS through 6.44.5 and 6.45.x through 6.45.3 improperly handles the disk name, which allows authenticated users to delete arbitrary files. Attackers can exploit this vulnerability to reset credential storage, which allows them access to the management interface as an administrator...

CVE-2019-15055

MikroTik RouterOS through 6.44.5 and 6.45.x through 6.45.3 improperly handles the disk name, which allows authenticated users to delete arbitrary files. Attackers can exploit this vulnerability to reset credential storage, which allows them access to the management interface as an administrator...

Authentication flaw

MikroTik RouterOS through 6.44.5 and 6.45.x through 6.45.3 improperly handles the disk name, which allows authenticated users to delete arbitrary files. Attackers can exploit this vulnerability to reset credential storage, which allows them access to the management interface as an administrator...

CVE-2019-15055

MikroTik RouterOS through 6.44.5 and 6.45.x through 6.45.3 improperly handles the disk name, which allows authenticated users to delete arbitrary files. Attackers can exploit this vulnerability to reset credential storage, which allows them access to the management interface as an administrator...