CVE-2020-20213

Name of the Vulnerable Software and Affected Versions: Mikrotik RouterOs version 6.44.5

Description: The issue is related to a stack exhaustion vulnerability in the /nova/bin/net process. An authenticated remote attacker can cause a Denial of Service due to overloading the system's CPU.

Recommendations: For Mikrotik RouterOs version 6.44.5, consider restricting access to the /nova/bin/net process to minimize the risk of exploitation. As a temporary workaround, limit the CPU usage of the process until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.