Security Advisory

CVE-2019-3943

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-04-10 20:01:00

Last updated 2024-08-04 19:26:27

Assigner tenable

State PUBLISHED

Description

MikroTik RouterOS versions Stable 6.43.12 and below, Long-term 6.42.12 and below, and Testing 6.44beta75 and below are vulnerable to an authenticated, remote directory traversal via the HTTP or Winbox interfaces. An authenticated, remote attack can use this vulnerability to read and write files outside of the sandbox directory (/rw/disk).

← Browse all CVEs View on cve.org ↗