Mikrotik RouterOs before 6.46.5 (stable tree) suffers from a memory corruption vulnerability in the /nova/bin/traceroute process. An authenticated remote attacker can cause a Denial of Service due via the loop counter variable.

CWE: CWE-119

CVSS 2: MEDIUM – 4 (Version: 2.0)
CVSS 3: MEDIUM – 6.5 (Version: 3.1)


NVD – CVE-2020-20247
CVE – CVE-2020-20247

Link (max. 20) Quelle Tags MISC Mailing List Third Party Advisory Third Party Advisory MISC Exploit Third Party Advisory VDB Entry MISC Exploit Third Party Advisory MISC MISC

Quelle: NVD – CVE-2020-20247
Datum Veröffentlichung: 2021-05-03T16:15Z, Datum letzte Änderung: 2021-05-10T12:43Z