Vulnerability Details CVE-2020-20214
Mikrotik RouterOs 6.44.6 (long-term tree) suffers from an assertion failure vulnerability in the btest process. An authenticated remote attacker can cause a Denial of Service due to an assertion failure via a crafted packet.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 48.5%
CVSS Severity
CVSS v3 Score 6.5
CVSS v2 Score 4.0
References
- http://packetstormsecurity.com/files/162513/Mikrotik-RouterOS-6.46.5-Memory-Corruption-Assertion-Failure.html
- http://seclists.org/fulldisclosure/2021/May/15
- http://seclists.org/fulldisclosure/2021/May/15
- https://mikrotik.com/
- http://packetstormsecurity.com/files/162513/Mikrotik-RouterOS-6.46.5-Memory-Corruption-Assertion-Failure.html
- http://seclists.org/fulldisclosure/2021/May/15
- http://seclists.org/fulldisclosure/2021/May/15
- https://mikrotik.com/