CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-20222

Mikrotik RouterOs 6.44.6 (long-term tree) suffers from a memory corruption vulnerability in the /nova/bin/sniffer process. An authenticated remote attacker can cause a Denial of Service (NULL pointer dereference).

Exploit prediction scoring system (EPSS) score

EPSS Score 0.008

EPSS Ranking 72.9%

CVSS Severity

CVSS v3 Score 6.5

CVSS v2 Score 4.0

References

http://packetstormsecurity.com/files/162513/Mikrotik-RouterOS-6.46.5-Memory-Corruption-Assertion-Failure.html
http://seclists.org/fulldisclosure/2021/May/15
http://seclists.org/fulldisclosure/2021/May/15
https://mikrotik.com/
http://packetstormsecurity.com/files/162513/Mikrotik-RouterOS-6.46.5-Memory-Corruption-Assertion-Failure.html
http://seclists.org/fulldisclosure/2021/May/15
http://seclists.org/fulldisclosure/2021/May/15
https://mikrotik.com/

Products affected by CVE-2020-20222

Mikrotik » Routeros » Version: 6.44.6

cpe:2.3:o:mikrotik:routeros:6.44.6

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-20222

Products

Pricing

Contact Us