6.5

CVE-2019-15055

Medienbericht
Exploit
MikroTik RouterOS through 6.44.5 and 6.45.x through 6.45.3 improperly handles the disk name, which allows authenticated users to delete arbitrary files. Attackers can exploit this vulnerability to reset credential storage, which allows them access to the management interface as an administrator without authentication.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
MikrotikRouteros Version <= 6.44.5
MikrotikRouteros Version >= 6.45 <= 6.45.3
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 2.23% 0.805
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 6.5 2.8 3.6
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
nvd@nist.gov 5.5 8 4.9
AV:N/AC:L/Au:S/C:N/I:P/A:P
CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

https://fortiguard.com/zeroday/FG-VD-19-108
Third Party Advisory
https://forum.mikrotik.com/viewtopic.php?t=151603
https://github.com/tenable/routeros/tree/master/poc/cve_2019_15055
Third Party Advisory
Exploit
https://medium.com/tenable-techblog/rooting-routeros-with-a-usb-drive-16d7b8665f90
Third Party Advisory
Press/Media Coverage
https://mikrotik.com/download/changelogs/testing-release-tree
Vendor Advisory
Release Notes