CVE-2020-20245
First published: Tue May 18 2021(Updated: )
Mikrotik RouterOs stable 6.46.3 suffers from a memory corruption vulnerability in the log process. An authenticated remote attacker can cause a Denial of Service due to improper memory access.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| MikroTik RouterOS | =6.46.3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2020-20245?
The severity of CVE-2020-20245 is medium, with a severity value of 6.5.
How does CVE-2020-20245 affect Mikrotik RouterOS?
CVE-2020-20245 affects Mikrotik RouterOS version 6.46.3, leading to a memory corruption vulnerability in the log process.
What can an authenticated remote attacker do using CVE-2020-20245?
An authenticated remote attacker can cause a Denial of Service (DoS) due to improper memory access.
Is there a fix for CVE-2020-20245?
Yes, upgrading to a version of Mikrotik RouterOS that is not affected by the vulnerability will fix CVE-2020-20245.
Where can I find more information about CVE-2020-20245?
You can find more information about CVE-2020-20245 on the following websites: [Packet Storm Security](http://packetstormsecurity.com/files/162533/MikroTik-RouterOS-Memory-Corruption.html), [Full Disclosure](http://seclists.org/fulldisclosure/2021/May/23), [MikroTik](https://mikrotik.com/)
- collector/nvd-index
- agent/severity
- agent/references
- agent/author
- agent/type
- agent/weakness
- agent/tags
- agent/description
- agent/event
- agent/last-modified-date
- agent/first-publish-date
- agent/softwarecombine
- vendor/mikrotik
- canonical/mikrotik routeros
- version/mikrotik routeros/6.46.3