3 matches found
MikroTik RouterOS Channel Accessible by Non-Endpoint (CVE-2019-3981)
MikroTik Winbox 3.20 and below is vulnerable to man in the middle attacks. A man in the middle can downgrade the client's authentication protocol and recover the user's username and MD5 hashed password. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-...
CVE-2019-3981
MikroTik Winbox 3.20 and below is vulnerable to man in the middle attacks. A man in the middle can downgrade the client's authentication protocol and recover the user's username and MD5 hashed password...
CVE-2019-3981
CVE-2019-3981 affects MikroTik Winbox ≤3.20. The issue allows a remote attacker to perform a man-in-the-middle attack that downgrades the client’s authentication protocol, enabling disclosure of the user’s username and MD5-hashed password. This is described across multiple connected records as a ...