New vulnerabilities in MikroTik routers disclosed:

– previously known "medium severity" CVE-2018-14847 is considered "critical" now
– CVE-2018-1156 (buffer overflow)
– CVE-2018-1157 (file upload memory exhaustion flaw)
– CVE-2018-1158 (recursive parsing stack exhaustion issue)
– CVE-2018-1159 (HTTP memory corruption flaw)

Upgrade to MikroTik RouterOS 6.42.7 and 6.40.9.

Sign in to participate in the conversation
Mastodon is a microblogging site that federates with most instances on the Fediverse.