MikroTik RouterOS < 6.40.9 / 6.42.7 / 6.43 multiple vulnerabilities.

High Nessus Plugin ID 112114


The remote networking device is affected by multiple vulnerabilities.


According to its self-reported version, the remote networking device is running a version of MikroTik prior to 6.40.9, 6.41.x < 6.42.7, or 6.43. It, therefore, vulnerable to multiple vulnerabilities.


Upgrade to MikroTik RouterOS 6.40.9 / 6.42.7 / 6.43 or later.

See Also




Plugin Details

Severity: High

ID: 112114

File Name: mikrotik_aug_2018.nasl

Version: 1.3

Type: remote

Family: Misc.

Published: 2018/08/24

Updated: 2019/11/04

Dependencies: 30212

Risk Information

Risk Factor: High

CVSS Score Source: CVE-2018-1156

CVSS v2.0

Base Score: 9

Temporal Score: 6.7

Vector: CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:C

Temporal Vector: CVSS2#E:U/RL:OF/RC:C

CVSS v3.0

Base Score: 8.8

Temporal Score: 7.7

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

CPE: cpe:/o:mikrotik:routeros

Required KB Items: MikroTik/RouterOS/Version

Exploit Ease: No known exploits are available

Patch Publication Date: 2018/08/20

Vulnerability Publication Date: 2018/08/22

Reference Information

CVE: CVE-2018-1156, CVE-2018-1157, CVE-2018-1158, CVE-2018-1159