EDB-46444
remotehardwareVERIFIED
MikroTik RouterOS < 6.43.12 (stable) / < 6.42.12 (long-term) - Firewall and NAT Bypass
CVE-2019-3924
Jacob Baines2/21/2019
CVE-2019-3924
7.5HIGHMikroTik RouterOS before 6.43.12 (stable) and 6.42.12 (long-term) is vulnerable to an intermediary vulnerability. The software will execute user defined network requests to both WAN and LAN clients. A
Published: 2/20/2019Updated: 8/15/2025
Description
MikroTik RouterOS before 6.43.12 (stable) and 6.42.12 (long-term) is vulnerable to an intermediary vulnerability. The software will execute user defined network requests to both WAN and LAN clients. A remote unauthenticated attacker can use this vulnerability to bypass the router's firewall or for general network scanning activities.
AI AnalysisPowered by AI
Affected Products
mikrotikrouteros
mikrotikrouteros
Available Exploits (1)
References
- http://www.securityfocus.com/bid/107177Third Party AdvisoryVDB Entry
- https://www.exploit-db.com/exploits/46444/ExploitThird Party AdvisoryVDB Entry
- https://www.tenable.com/security/research/tra-2019-07ExploitThird Party Advisory
- http://www.securityfocus.com/bid/107177Third Party AdvisoryVDB Entry
- https://www.exploit-db.com/exploits/46444/ExploitThird Party AdvisoryVDB Entry
- https://www.tenable.com/security/research/tra-2019-07ExploitThird Party Advisory