Lucene search
K

4 matches found

Tenable Nessus
Tenable Nessus
added 2024/02/27 12:0 a.m.25 views

MikroTik RouterOS Missing Encryption of Sensitive Data (CVE-2017-6297)

The L2TP Client in MikroTik RouterOS versions 6.83.3 and 6.37.4 does not enable IPsec encryption after a reboot, which allows man-in-the- middle attackers to view transmitted data unencrypted and gain access to networks on the L2TP server by monitoring the packets for the transmitted data and...

5.9CVSS6AI score0.00743EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2017/03/09 12:0 a.m.61 views

MikroTik RouterOS 'L2TP' Man-in-the-Middle Attack Vulnerability (Feb 2017)

MikroTik RouterOS is prone to a man in the middle attack vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

5.9CVSS5.7AI score0.00743EPSS
Exploits1References3
NVD
NVD
added 2017/02/27 7:59 a.m.19 views

CVE-2017-6297

The L2TP Client in MikroTik RouterOS versions 6.83.3 and 6.37.4 does not enable IPsec encryption after a reboot, which allows man-in-the-middle attackers to view transmitted data unencrypted and gain access to networks on the L2TP server by monitoring the packets for the transmitted data and...

5.9CVSS5.7AI score0.00743EPSS
Exploits1References2
CVE
CVE
added 2017/02/27 7:25 a.m.68 views

CVE-2017-6297

The CVE-2017-6297 entry concerns MikroTik RouterOS L2TP Client in versions 6.83.3 and 6.37.4. The vulnerability arises because IPsec encryption is not enabled after a reboot, enabling man-in-the-middle attackers to view unencrypted data and potentially access networks on the L2TP server by monito...

5.9CVSS5.6AI score0.00743EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder