CVE-2025-42611

Name of the Vulnerable Software and Affected Versions RouterOS (affected versions not specified)

Description Shared certificate validation logic uses a system certificate store that is trusted equally by all system services. This creates a confusion of scope where any certificate authority in the system-wide trust store can be trusted in any context, potentially leading to partial or full authentication bypass in services such as CAPsMAN, OpenVPN, and Dot1x (802.1X).

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.