CVE-2018-7445

critical-risk
Published 2018-03-19

A buffer overflow was found in the MikroTik RouterOS SMB service when processing NetBIOS session request messages. Remote attackers with access to the service can exploit this vulnerability and gain code execution on the system. The overflow occurs before authentication takes place, so it is possible for an unauthenticated remote attacker to exploit it. All architectures and all devices running RouterOS before versions 6.41.3/6.42rc27 are vulnerable.

Do I need to act?

!
87.6% chance of exploitation in next 30 days
EPSS score — higher than 12% of all CVEs
!
CISA KEV: actively exploited in the wild
On the Known Exploited Vulnerabilities catalog — federal agencies must patch
!
1 public exploit available
44290
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
9
CVSS 9.8/10 Critical
NETWORK / LOW complexity

Affected Products (13)

Affected Vendors

Mikrotik

References (9)

Exploit http://seclists.org/fulldisclosure/2018/Mar/38
Third Party Advisory http://www.securityfocus.com/bid/103427
Exploit https://www.coresecurity.com/advisories/mikrotik-routeros-smb-buffer-overflow
Exploit https://www.exploit-db.com/exploits/44290/
Exploit http://seclists.org/fulldisclosure/2018/Mar/38
Third Party Advisory http://www.securityfocus.com/bid/103427
Exploit https://www.coresecurity.com/advisories/mikrotik-routeros-smb-buffer-overflow
Exploit https://www.exploit-db.com/exploits/44290/
US Government Resource https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2018-...
76
/ 100
critical-risk
Severity 32/34 · Critical
Exploitability 27/34 · High
Exposure 17/34 · Moderate