Unrated severityNVD Advisory· Published May 18, 2021· Updated Aug 4, 2024
CVE-2020-20254
CVE-2020-20254
Description
Mikrotik RouterOs before 6.47 (stable tree) suffers from a memory corruption vulnerability in the /nova/bin/lcdstat process. An authenticated remote attacker can cause a Denial of Service (NULL pointer dereference).
Affected products
2- Mikrotik/RouterOsdescription
Patches
Vulnerability mechanics
References
2- seclists.org/fulldisclosure/2021/May/14mitremailing-listx_refsource_FULLDISCx_refsource_MISC
- github.com/cq674350529/pocs_slides/blob/master/pocs/MikroTik/vul_lcdstat_2/README.mdmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.