Vulnerabilities > Mikrotik > Routeros > 7.4
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-11-14 | CVE-2023-41570 | Unspecified vulnerability in Mikrotik Routeros MikroTik RouterOS v7.1 to 7.11 was discovered to contain incorrect access control mechanisms in place for the Rest API. | 5.3 |
| 2022-12-05 | CVE-2022-45313 | Out-of-bounds Read vulnerability in Mikrotik Routeros Mikrotik RouterOs before stable v7.5 was discovered to contain an out-of-bounds read in the hotspot process. | 8.8 |
| 2022-12-05 | CVE-2022-45315 | Out-of-bounds Read vulnerability in Mikrotik Routeros Mikrotik RouterOs before stable v7.6 was discovered to contain an out-of-bounds read in the snmp process. | 9.8 |
| 2022-08-25 | CVE-2022-34960 | Link Following vulnerability in Mikrotik Routeros 7.4 The container package in MikroTik RouterOS 7.4beta4 allows an attacker to create mount points pointing to symbolic links, which resolve to locations on the host device. | 9.8 |
| 2021-01-04 | CVE-2021-3014 | Cross-site Scripting vulnerability in Mikrotik Routeros In MikroTik RouterOS through 2021-01-04, the hotspot login page is vulnerable to reflected XSS via the target parameter. | 6.1 |