CVE-2020-20217
First published: Thu Jul 08 2021(Updated: )
Mikrotik RouterOs before 6.47 (stable tree) suffers from an uncontrolled resource consumption vulnerability in the /nova/bin/route process. An authenticated remote attacker can cause a Denial of Service due to overloading the systems CPU.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| MikroTik RouterOS | <6.47 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for the Mikrotik RouterOS uncontrolled resource consumption vulnerability?
The vulnerability ID for the Mikrotik RouterOS uncontrolled resource consumption vulnerability is CVE-2020-20217.
What is the severity of CVE-2020-20217?
CVE-2020-20217 has a severity value of 6.5, which is considered medium.
How does the Mikrotik RouterOS uncontrolled resource consumption vulnerability impact the system?
The vulnerability can cause a Denial of Service (DoS) by overloading the system's CPU.
What version of Mikrotik RouterOS is affected by CVE-2020-20217?
Mikrotik RouterOS before version 6.47 (stable tree) is affected by CVE-2020-20217.
Is authentication required to exploit CVE-2020-20217?
Yes, an authenticated remote attacker is required to exploit CVE-2020-20217.
- collector/nvd-index
- agent/weakness
- agent/references
- agent/severity
- agent/author
- agent/type
- agent/event
- agent/description
- agent/softwarecombine
- agent/first-publish-date
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/mikrotik
- canonical/mikrotik routeros