PT-2017-16976 · Mikrotik · Routeros+1

Ryan Milne

Published

2017-02-27

Updated

2019-10-03

CVE-2017-6297

CVSS v3.1

5.9

Medium

Vector

AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions MikroTik RouterOS versions 6.37.4 through 6.83.3

Description The issue concerns the L2TP Client in MikroTik RouterOS, which fails to enable IPsec encryption after a reboot. This allows man-in-the-middle attackers to intercept and view transmitted data without encryption, potentially gaining access to networks on the L2TP server by monitoring packets for transmitted data and obtaining the L2TP secret.

Recommendations For MikroTik RouterOS versions 6.37.4 through 6.83.3, consider temporarily disabling the L2TP Client until a patch is available to ensure IPsec encryption is consistently enabled. Restrict access to sensitive networks and data to minimize the risk of exploitation.

Exploit

Fix

Missing Encryption of Sensitive Data

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-311

Related Identifiers

CVE-2017-6297

Affected Products

Mikrotik Routeros

Routeros

PT-2017-16976 · Mikrotik · Routeros+1

CVE-2017-6297

Weakness Enumeration

Related Identifiers

Affected Products

References · 4