2 matches found
CVE-2025-42611 Improper certificate validation in multiple RouterOS services
RouterOS provides various services that rely on correct verification of client and server certificates to secure confidentiality and integrity of communications. This includes OpenVPN, CAPsMAN, Dot1x 802.1X, among others. The vulnerability lies in shared certificate validation logic which uses th...
CVE-2025-42611
CVE-2025-42611 : RouterOS provides multiple services (OpenVPN, CAPsMAN, Dot1x) that rely on certificate verification using a system-wide trusted store. The vulnerability stems from shared certificate validation logic that uses this store, allowing any CA in the trust store to be trusted across co...