Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mikrotik vulnerabilities and exploits
(subscribe to this query)
8.1
CVSSv3
CVE-2018-10066
An issue exists in MikroTik RouterOS 6.41.4. Missing OpenVPN server certificate verification allows a remote unauthenticated attacker capable of intercepting client traffic to act as a malicious OpenVPN server. This may allow the malicious user to gain access to the client's...
Mikrotik Routeros 6.41.4
7.5
CVSSv3
CVE-2018-10070
A vulnerability in MikroTik Version 6.41.4 could allow an unauthenticated remote malicious user to exhaust all available CPU and all available RAM by sending a crafted FTP request on port 21 that begins with many '\0' characters, preventing the affected router from acce...
Mikrotik Router Firmware 6.41.4
1 EDB exploit
7.5
CVSSv3
CVE-2017-17538
MikroTik v6.40.5 devices allow remote malicious users to cause a denial of service via a flood of ICMP packets.
Mikrotik Router Firmware 6.40.5
1 EDB exploit
7.5
CVSSv3
CVE-2017-8338
A vulnerability in MikroTik Version 6.38.5 could allow an unauthenticated remote malicious user to exhaust all available CPU via a flood of UDP packets on port 500 (used for L2TP over IPsec), preventing the affected router from accepting new connections; all devices will be disco...
Mikrotik Routeros 6.38.5
NA
CVE-2018-74453
A buffer overflow was found in the MikroTik RouterOS SMB service when processing NetBIOS session request messages. Remote attackers with access to the service can exploit this vulnerability and gain code execution on the system. The overflow occurs before authentication takes pla...
NA
CVE-2023-32154
Mikrotik RouterOS RADVD Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows network-adjacent malicious users to execute arbitrary code on affected installations of Mikrotik RouterOS. Authentication is not required to exploit this vulnerability. The ...
NA
CVE-2008-0680
SNMPd in MikroTik RouterOS 3.2 and previous versions allows remote malicious users to cause a denial of service (daemon crash) via a crafted SNMP SET request.
Microtik Routeros
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3201
CVE-2024-4779
CVE-2024-35090
CVE-2024-5084
hard-coded
CVE-2024-4985
HTML injection
CVE-2024-33655
local file inclusion
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9