Mikrotik RouterOs before 6.47 (stable tree) suffers from a divison by zero vulnerability in the /nova/bin/lcdstat process. An authenticated remote attacker can cause a Denial of Service due to a divide by zero error.
References
Link | Resource |
---|---|
http://seclists.org/fulldisclosure/2021/May/14 | Exploit Mailing List Third Party Advisory |
https://github.com/cq674350529/pocs_slides/blob/master/pocs/MikroTik/vul_lcdstat_4/README.md | Broken Link Third Party Advisory |
http://seclists.org/fulldisclosure/2021/May/14 | Exploit Mailing List Third Party Advisory |
https://github.com/cq674350529/pocs_slides/blob/master/pocs/MikroTik/vul_lcdstat_4/README.md | Broken Link Third Party Advisory |
Configurations
History
21 Nov 2024, 05:11
Type | Values Removed | Values Added |
---|---|---|
References | () http://seclists.org/fulldisclosure/2021/May/14 - Exploit, Mailing List, Third Party Advisory | |
References | () https://github.com/cq674350529/pocs_slides/blob/master/pocs/MikroTik/vul_lcdstat_4/README.md - Broken Link, Third Party Advisory |
Information
Published : 2021-05-18 14:15
Updated : 2024-11-21 05:11
NVD link : CVE-2020-20253
Mitre link : CVE-2020-20253
CVE.ORG link : CVE-2020-20253
JSON object : View
Products Affected
mikrotik
- routeros
CWE
CWE-369
Divide By Zero