CVE-2020-20221

Name of the Vulnerable Software and Affected Versions: Mikrotik RouterOs versions prior to 6.44.6

Description: The issue is related to an uncontrolled resource consumption in the /nova/bin/cerm process. An authenticated remote attacker can cause a Denial of Service due to overloading the system's CPU.

Recommendations: For versions prior to 6.44.6, update to version 6.44.6 or later to resolve the issue. As a temporary workaround, consider restricting access to the /nova/bin/cerm process to minimize the risk of exploitation.