5 matches found
MikroTik RouterOS Out-of-bounds Write (CVE-2017-20149)
The Mikrotik RouterOS web server allows memory corruption in releases before Stable 6.38.5 and Long-term 6.37.5, aka Chimay-Red. A remote and unauthenticated user can trigger the vulnerability by sending a crafted HTTP request. An attacker can use this vulnerability to execute arbitrary code on t...
CVE-2017-20149
creationtimestamp| type| source ---|---|--- 2022-10-15 07:29:23+00:00| exploited| https://t.me/cibsecurity/51523 2026-01-20 08:59:41+00:00| seen| https://mastodon.social/users/hrbrmstr/statuses/115926602786770030 2026-06-19 12:47:02+00:00| exploited|...
CVE-2017-20149
The Mikrotik RouterOS web server allows memory corruption in releases before Stable 6.38.5 and Long-term 6.37.5, aka Chimay-Red. A remote and unauthenticated user can trigger the vulnerability by sending a crafted HTTP request. An attacker can use this vulnerability to execute arbitrary code on t...
CVE-2017-20149
CVE-2017-20149 affects MikroTik RouterOS web server. A remote, unauthenticated attacker can trigger memory corruption via a crafted HTTP request, enabling arbitrary code execution on affected devices. Vulnerable versions: Stable before 6.38.5 and Long-term before 6.37.5 (Chimay-Red). Exploited in...
VulnCheck KEV: CVE-2017-20149
The Mikrotik RouterOS web server allows memory corruption in releases before Stable 6.38.5 and Long-term 6.37.5, aka Chimay-Red. A remote and unauthenticated user can trigger the vulnerability by sending a crafted HTTP request. An attacker can use this vulnerability to execute arbitrary code on...