VYPR
Unrated severityNVD Advisory· Published May 29, 2025· Updated May 29, 2025

CVE-2024-54952

CVE-2024-54952

Description

MikroTik RouterOS 6.40.5, the SMB service contains a memory corruption vulnerability. Remote, unauthenticated attackers can exploit this issue by sending specially crafted packets, triggering a null pointer dereference. This leads to a Remote Denial of Service (DoS), rendering the SMB service unavailable.

Affected products

2
  • Mikrotik/Routeroscpe-rescue2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: 6.40.5

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.