Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mikrotik routeros vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2020-20221
Mikrotik RouterOs prior to 6.44.6 (long-term tree) suffers from an uncontrolled resource consumption vulnerability in the /nova/bin/cerm process. An authenticated remote attacker can cause a Denial of Service due to overloading the systems CPU.
Mikrotik Routeros
6.5
CVSSv3
CVE-2020-20225
Mikrotik RouterOs prior to 6.47 (stable tree) suffers from an assertion failure vulnerability in the /nova/bin/user process. An authenticated remote attacker can cause a Denial of Service due to an assertion failure via a crafted packet.
Mikrotik Routeros
6.5
CVSSv3
CVE-2020-20231
Mikrotik RouterOs through stable version 6.48.3 suffers from a memory corruption vulnerability in the /nova/bin/detnet process. An authenticated remote attacker can cause a Denial of Service (NULL pointer dereference).
Mikrotik Routeros
6.5
CVSSv3
CVE-2020-20249
Mikrotik RouterOs before stable 6.47 suffers from a memory corruption vulnerability in the resolver process. By sending a crafted packet, an authenticated remote attacker can cause a Denial of Service.
Mikrotik Routeros
6.5
CVSSv3
CVE-2020-20253
Mikrotik RouterOs prior to 6.47 (stable tree) suffers from a divison by zero vulnerability in the /nova/bin/lcdstat process. An authenticated remote attacker can cause a Denial of Service due to a divide by zero error.
Mikrotik Routeros
6.5
CVSSv3
CVE-2020-20265
Mikrotik RouterOs prior to 6.47 (stable tree) suffers from a memory corruption vulnerability in the /ram/pckg/wireless/nova/bin/wireless process. An authenticated remote attacker can cause a Denial of Service due via a crafted packet.
Mikrotik Routeros
6.5
CVSSv3
CVE-2020-20266
Mikrotik RouterOs prior to 6.47 (stable tree) suffers from a memory corruption vulnerability in the /nova/bin/dot1x process. An authenticated remote attacker can cause a Denial of Service (NULL pointer dereference).
Mikrotik Routeros
NA
CVE-2008-6976
MikroTik RouterOS 3.x up to and including 3.13 and 2.x up to and including 2.9.51 allows remote malicious users to modify Network Management System (NMS) settings via a crafted SNMP set request.
Mikrotik Routeros
1 EDB exploit
7.5
CVSSv3
CVE-2019-13074
A vulnerability in the FTP daemon on MikroTik routers up to and including 6.44.3 could allow remote malicious users to exhaust all available memory, causing the device to reboot because of uncontrolled resource management.
Mikrotik Routeros
6.1
CVSSv3
CVE-2021-3014
In MikroTik RouterOS through 2021-01-04, the hotspot login page is vulnerable to reflected XSS via the target parameter.
Mikrotik Routeros
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »