CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 2018/04/13 1:29 p.m.•20 views

CVE-2018-10066

8.1CVSS8.2AI score0.01049EPSS

Cvelist•added 2018/04/13 1:0 p.m.•26 views

CVE-2018-10066

8.2AI score0.01049EPSS

CVE•added 2018/04/13 1:0 p.m.•87 views

CVE-2018-10066

CVE-2018-10066 affects MikroTik RouterOS 6.41.4. The issue is missing OpenVPN server certificate verification, allowing a remote unauthenticated attacker who can intercept client traffic to impersonate a legitimate OpenVPN server and potentially access the client’s internal network (e.g., via sit...

8.1CVSS8.2AI score0.01049EPSS

Exploits1References1Affected Software1

CNVD•added 2018/04/13 12:0 a.m.•3 views

MikroTik RouterOS Elevation of Privilege Vulnerability

MikroTik RouterOS is a set of routing operating system developed based on Linux core by MikroTik Latvia. The system turns a PC computer into a professional router. A security vulnerability exists in MikroTik RouterOS version 6.41.4, which stems from the program's lack of OpenVPN server certificat...

8.1CVSS7.1AI score0.01049EPSS

Saint•added 2018/04/02 12:0 a.m.•613 views

MicroTik RouterOS SMB buffer overflow

Added: 04/02/2018 CVE: CVE-2018-7445 BID: 103427 Background RouterOS is a Linux-based operating system used by MicroTik devices. Problem A buffer overflow in the SMB service could allow a remote, unauthenticated attacker to execute arbitrary commands. Resolution Upgrade to RouterOS 6.41.3 or...

10CVSS9.2AI score0.61018EPSS

Saint•added 2018/04/02 12:0 a.m.•712 views

MicroTik RouterOS SMB buffer overflow

Saint•added 2018/04/02 12:0 a.m.•45 views

MicroTik RouterOS SMB buffer overflow

10CVSS9.2AI score0.61018EPSS

VulnCheck KEV•added 2018/03/28 12:0 a.m.•3 views

VulnCheck KEV: CVE-2017-20149

The Mikrotik RouterOS web server allows memory corruption in releases before Stable 6.38.5 and Long-term 6.37.5, aka Chimay-Red. A remote and unauthenticated user can trigger the vulnerability by sending a crafted HTTP request. An attacker can use this vulnerability to execute arbitrary code on...

9.8CVSS7.7AI score0.02554EPSS

Exploits2References1

OpenVAS•added 2018/03/28 12:0 a.m.•358 views

MikroTik RouterOS < 6.41.3 RCE Vulnerability

MikroTik RouterOS is prone to a remote code execution RCE vulnerability in the SMB service. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE...

10CVSS9.7AI score0.61018EPSS

Exploits7References4

Tenable Nessus•added 2018/03/22 12:0 a.m.•578 views

MikroTik RouterOS < 6.40.7 or 6.41.x < 6.41.3 SMB Buffer Overflow

According to its self-reported version, the remote networking device is running a version of MikroTik RouterOS prior to 6.40.7 or 6.41.x prior to 6.41.3. It is, therefore, affected by a remote SMB buffer overflow vulnerability that can be leveraged by an unauthenticated, remote attacker to execut...

10CVSS9AI score0.61018EPSS

Exploits7References3

Check Point Advisories•added 2018/03/20 12:0 a.m.•14 views

MikroTik RouterOS SMB Remote Code Execution (CVE-2018-7445)

A buffer overflow vulnerability exists in MikroTik RouterOS. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

10CVSS5.9AI score0.61018EPSS

CNVD•added 2018/03/20 12:0 a.m.•4 views

MikroTik RouterOS Buffer Overflow Vulnerability

MikroTik RouterOS is a routing operating system developed by MikroTik based on the Linux kernel, which can be installed to turn a standard x86 PC device into a professional router. A buffer overflow vulnerability exists in MikroTik RouterOS 6.41.3 and earlier versions. The vulnerability stems fro...

10CVSS7.8AI score0.61018EPSS

Exploits7References1

OSV•added 2018/03/19 9:29 p.m.•1 views

CVE-2018-7445

A buffer overflow was found in the MikroTik RouterOS SMB service when processing NetBIOS session request messages. Remote attackers with access to the service can exploit this vulnerability and gain code execution on the system. The overflow occurs before authentication takes place, so it is...

9.8CVSS6.4AI score0.61018EPSS

Exploits7References5

NVD•added 2018/03/19 9:29 p.m.•20 views

CVE-2018-7445

Prion•added 2018/03/19 9:29 p.m.•29 views

Exploits7References5

Buffer overflow

Exploits7References4Affected Software1

Vulnrichment•added 2018/03/19 9:0 p.m.•11 views

CVE-2018-7445

8.4AI score0.61018EPSS

Exploits7References4

Cvelist•added 2018/03/19 9:0 p.m.•34 views

CVE-2018-7445

10AI score0.61018EPSS

Exploits7References4

CVE•added 2018/03/19 9:0 p.m.•829 views

CVE-2018-7445

CVE-2018-7445 : MikroTik RouterOS SMB service has a buffer overflow when processing NetBIOS session requests. It allows unauthenticated remote code execution on all devices/architectures running RouterOS before versions 6.41.3 or 6.42rc27. Public references indicate PoC/exploits exist (e.g., Expl...