CVE-2019-3924

high-risk

Published 2019-02-20

MikroTik RouterOS before 6.43.12 (stable) and 6.42.12 (long-term) is vulnerable to an intermediary vulnerability. The software will execute user defined network requests to both WAN and LAN clients. A remote unauthenticated attacker can use this vulnerability to bypass the router's firewall or for general network scanning activities.

Do I need to act?

10.8% chance of exploitation in next 30 days

EPSS score — higher than 89% of all CVEs

Not on CISA KEV list

No confirmed active exploitation reported to CISA

1 public exploit available

46444

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 7.5/10 High

NETWORK / LOW complexity

Affected Products (2)

Routeros

Affected Vendors

Mikrotik

References (6)

Third Party Advisory http://www.securityfocus.com/bid/107177

Exploit https://www.exploit-db.com/exploits/46444/

Exploit https://www.tenable.com/security/research/tra-2019-07

Third Party Advisory http://www.securityfocus.com/bid/107177

Exploit https://www.exploit-db.com/exploits/46444/

Exploit https://www.tenable.com/security/research/tra-2019-07

/ 100

high-risk

Severity 26/34 · High

Exploitability 18/34 · Moderate

Exposure 7/34 · Low