New vulnerabilities in MikroTik routers disclosed:
– previously known "medium severity" CVE-2018-14847 is considered "critical" now
– CVE-2018-1156 (buffer overflow)
– CVE-2018-1157 (file upload memory exhaustion flaw)
– CVE-2018-1158 (recursive parsing stack exhaustion issue)
– CVE-2018-1159 (HTTP memory corruption flaw)
Upgrade to MikroTik RouterOS 6.42.7 and 6.40.9.
mastodon.at is a microblogging site that federates with most instances on the Fediverse.