Test ID:	1.3.6.1.4.1.25623.1.0.145885
Category:	Denial of Service
Title:	MikroTik RouterOS < 6.46.5 Multiple DoS Vulnerabilities
Summary:	MikroTik RouterOS is prone to multiple denial of service (DoS); vulnerabilities.
Description:	Summary: MikroTik RouterOS is prone to multiple denial of service (DoS) vulnerabilities. Vulnerability Insight: The following vulnerabilities exist: - CVE-2020-20221: Uncontrolled resource consumption in the /nova/bin/cerm process - CVE-2020-20247: Memory corruption in the /nova/bin/traceroute process Affected Software/OS: MikroTik RouterOS version 6.46.4 and prior. Solution: Update to version 6.46.5 (long-term version) or later. CVSS Score: 6.8 CVSS Vector: AV:N/AC:L/Au:S/C:N/I:N/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2020-20221 https://cwe.mitre.org/data/definitions/400.html https://seclists.org/fulldisclosure/2020/May/30 https://seclists.org/fulldisclosure/2021/May/1 Common Vulnerability Exposure (CVE) ID: CVE-2020-20247
Copyright	Copyright (C) 2021 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.