Main Vulnerability Database Vulnerabilities #VU7644

Security restrictions bypass in MikroTik RouterOS - #VU7644

Published: August 1, 2017

Vulnerability identifier: #VU7644

CSH Severity: Low

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: N/A

CWE-ID: CWE-264

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vendor: MikroTik

Affected software:
MikroTik RouterOS

Detailed vulnerability description

Multiple issues have been fixed in Mikrotik RouterOS. Due to vendor's policy not report any security vulnerabilities in their products we treat every new version of Mikrotik RouterOS as a security patch.

Remediation

Update to version 6.40.

Sources

https://mikrotik.com/download/changelogs/current-release-tree

Security restrictions bypass in MikroTik RouterOS - #VU7644

Detailed vulnerability description

Remediation

Sources

Please verify you're human