Vulnerabilities > Mikrotik > Routeros > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-11-14 CVE-2023-41570 Unspecified vulnerability in Mikrotik Routeros
MikroTik RouterOS v7.1 to 7.11 was discovered to contain incorrect access control mechanisms in place for the Rest API.
network
high complexity
mikrotik
5.3
5.3
2022-08-26 CVE-2022-36522 Reachable Assertion vulnerability in Mikrotik Routeros
Mikrotik RouterOs through stable v6.48.3 was discovered to contain an assertion failure in the component /advanced-tools/nova/bin/netwatch.
network
low complexity
mikrotik CWE-617
6.5
6.5
2022-05-11 CVE-2021-36613 NULL Pointer Dereference vulnerability in Mikrotik Routeros
Mikrotik RouterOs before stable 6.48.2 suffers from a memory corruption vulnerability in the ptp process.
network
low complexity
mikrotik CWE-476
6.5
6.5
2022-05-11 CVE-2021-36614 NULL Pointer Dereference vulnerability in Mikrotik Routeros
Mikrotik RouterOs before stable 6.48.2 suffers from a memory corruption vulnerability in the tr069-client process.
network
low complexity
mikrotik CWE-476
6.5
6.5
2021-07-21 CVE-2020-20219 Out-of-bounds Write vulnerability in Mikrotik Routeros 6.44.6
Mikrotik RouterOs 6.44.6 (long-term tree) suffers from a memory corruption vulnerability in the /nova/bin/igmp-proxy process.
network
low complexity
mikrotik CWE-787
6.5
6.5
2021-07-21 CVE-2020-20221 Resource Exhaustion vulnerability in Mikrotik Routeros
Mikrotik RouterOs before 6.44.6 (long-term tree) suffers from an uncontrolled resource consumption vulnerability in the /nova/bin/cerm process.
network
low complexity
mikrotik CWE-400
6.5
6.5
2021-07-21 CVE-2020-20262 Reachable Assertion vulnerability in Mikrotik Routeros
Mikrotik RouterOs before 6.47 (stable tree) suffers from an assertion failure vulnerability in the /ram/pckg/security/nova/bin/ipsec process.
network
low complexity
mikrotik CWE-617
6.5
6.5
2021-07-19 CVE-2020-20248 Resource Exhaustion vulnerability in Mikrotik Routeros 6.47
Mikrotik RouterOs before stable 6.47 suffers from an uncontrolled resource consumption in the memtest process.
network
low complexity
mikrotik CWE-400
6.5
6.5
2021-07-19 CVE-2020-20249 Out-of-bounds Write vulnerability in Mikrotik Routeros
Mikrotik RouterOs before stable 6.47 suffers from a memory corruption vulnerability in the resolver process.
network
low complexity
mikrotik CWE-787
6.5
6.5
2021-07-19 CVE-2020-20230 Resource Exhaustion vulnerability in Mikrotik Routeros
Mikrotik RouterOs before stable 6.47 suffers from an uncontrolled resource consumption in the sshd process.
network
low complexity
mikrotik CWE-400
6.5
6.5