PT-2019-2528 · Mikrotik · Routeros+1

Jacob Baines

Published

2019-04-10

Updated

2019-12-17

CVE-2019-3943

CVSS v3.1

8.1

High

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Name of the Vulnerable Software and Affected Versions MikroTik RouterOS versions Stable 6.43.12 and below MikroTik RouterOS versions Long-term 6.42.12 and below MikroTik RouterOS versions Testing 6.44beta75 and below

Description The issue is related to directory traversal errors in the restricted access directory path. An authenticated, remote attack can exploit this to read and write files outside of the sandbox directory (/rw/disk) via the HTTP or Winbox interfaces.

Recommendations For MikroTik RouterOS versions Stable 6.43.12 and below, update to a version above 6.43.12 to resolve the issue. For MikroTik RouterOS versions Long-term 6.42.12 and below, update to a version above 6.42.12 to resolve the issue. For MikroTik RouterOS versions Testing 6.44beta75 and below, update to a version above 6.44beta75 to resolve the issue. As a temporary workaround, consider restricting access to the HTTP and Winbox interfaces until a patch is available.

Exploit

Fix

Relative Path Traversal

Path traversal

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-23CWE-22

Related Identifiers

BDU:2019-02371

CVE-2019-3943

Affected Products

Mikrotik Routeros

Routeros

PT-2019-2528 · Mikrotik · Routeros+1

CVE-2019-3943

Weakness Enumeration

Related Identifiers

Affected Products

References · 5