CVE-2021-41987

In the SCEP Server of RouterOS in certain Mikrotik products, an attacker can trigger a heap-based buffer overflow that leads to remote code execution. The attacker must know the scep_server_name value. This affects RouterOS 6.46.8, 6.47.9, and 6.47.10.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
8.1 HIGH
NETWORK
HIGH
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 97%
VendorProductVersion
mikrotikrouteros
6.46.8
mikrotikrouteros
6.47.9
mikrotikrouteros
6.47.10
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://mikrotik.com/download/archive
https://teamt5.org/en/posts/vulnerability-mikrotik-cve-2021-41987/
https://mikrotik.com/download/archive
https://teamt5.org/en/posts/vulnerability-mikrotik-cve-2021-41987/