Posted by Q C on May 07

[Update 2021/05/05] Two CVEs have been assigned to two of these
vulnerabilities.

CVE-2020-20254: Mikrotik RouterOs before 6.47 (stable tree) suffers from a
memory corruption vulnerability in the /nova/bin/lcdstat process. An
authenticated remote attacker can cause a Denial of Service (NULL pointer
dereference).

CVE-2020-20253: Mikrotik RouterOs before 6.47 (stable tree) in the
/nova/bin/lcdstat process. An authenticated remote attacker can…
Read More – Full Disclosure


By |2021-05-07T16:19:26-04:00May 7th, 2021|