Vulnerability Details CVE-2020-20236
Mikrotik RouterOs 6.46.3 (stable tree) suffers from a memory corruption vulnerability in the /nova/bin/sniffer process. An authenticated remote attacker can cause a Denial of Service due to improper memory access.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.008
EPSS Ranking 73.3%
CVSS Severity
CVSS v3 Score 6.5
CVSS v2 Score 4.0
References
- http://packetstormsecurity.com/files/162513/Mikrotik-RouterOS-6.46.5-Memory-Corruption-Assertion-Failure.html
- http://seclists.org/fulldisclosure/2021/May/15
- http://seclists.org/fulldisclosure/2021/May/15
- https://mikrotik.com/
- http://packetstormsecurity.com/files/162513/Mikrotik-RouterOS-6.46.5-Memory-Corruption-Assertion-Failure.html
- http://seclists.org/fulldisclosure/2021/May/15
- http://seclists.org/fulldisclosure/2021/May/15
- https://mikrotik.com/