#VU7644 Security restrictions bypass in MikroTik RouterOS
Published: August 1, 2017
Vulnerability identifier: #VU7644
Vulnerability risk: Low
CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: N/A
CWE-ID: CWE-264
Exploitation vector: Remote access
Exploit availability:
No public exploit available
Vulnerable software:
MikroTik RouterOS
MikroTik RouterOS
Software vendor:
MikroTik
MikroTik
Description
Multiple issues have been fixed in Mikrotik RouterOS. Due to vendor's policy not report any security vulnerabilities in their products we treat every new version of Mikrotik RouterOS as a security patch.
Remediation
Update to version 6.40.