CVE-2017-8338

Name of the Vulnerable Software and Affected Versions MikroTik version 6.38.5

Description A vulnerability could allow an unauthenticated remote attacker to exhaust all available CPU via a flood of UDP packets on port 500, which is used for L2TP over IPsec. This prevents the affected router from accepting new connections, causing all devices to be disconnected from the router and all logs to be removed automatically.

Recommendations For MikroTik version 6.38.5, consider restricting access to port 500 to minimize the risk of exploitation. As a temporary workaround, limiting the number of incoming UDP packets on this port may help mitigate the issue until a patch is available.