Security Advisory

CVE-2021-41987

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-03-16 14:44:58

Last updated 2024-08-04 03:22:25

Assigner mitre

State PUBLISHED

Description

In the SCEP Server of RouterOS in certain Mikrotik products, an attacker can trigger a heap-based buffer overflow that leads to remote code execution. The attacker must know the scep_server_name value. This affects RouterOS 6.46.8, 6.47.9, and 6.47.10.

← Browse all CVEs View on cve.org ↗