Detections
Analytics
MikroTik RouterOS Path Traversal (CVE-2019-15055)
medium Tenable OT Security Plugin ID 502079
Synopsis
The remote OT asset is affected by a vulnerability.Description
MikroTik RouterOS through 6.44.5 and 6.45.x through 6.45.3 improperly handles the disk name, which allows authenticated users to delete arbitrary files. Attackers can exploit this vulnerability to reset credential storage, which allows them access to the management interface as an administrator without authentication.This plugin only works with Tenable.ot.
Please visit https://www.tenable.com/products/tenable-ot for more information.
Solution
Refer to the vendor advisory.See Also
https://fortiguard.com/zeroday/FG-VD-19-108
https://forum.mikrotik.com/viewtopic.php?t=151603
https://github.com/tenable/routeros/tree/master/poc/cve_2019_15055
http://www.nessus.org/u?8b748946
https://mikrotik.com/download/changelogs/testing-release-tree
Plugin Details
Severity: Medium
ID: 502079
Version: 1.1
Type: remote
Family: Tenable.ot
Published: 2/27/2024
Updated: 2/28/2024
Supported Sensors: Tenable OT Security
Risk Information
VPR
Risk Factor: Medium
Score: 4.4
CVSS v2
Risk Factor: Medium
Base Score: 5.5
Temporal Score: 4.3
Vector: CVSS2#AV:N/AC:L/Au:S/C:N/I:P/A:P
CVSS Score Source: CVE-2019-15055
CVSS v3
Risk Factor: Medium
Base Score: 6.5
Temporal Score: 5.9
Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
Temporal Vector: CVSS:3.0/E:P/RL:O/RC:C
Vulnerability Information
CPE: cpe:/o:mikrotik:routeros:6.44.5, cpe:/o:mikrotik:routeros:6.45.3
Required KB Items: Tenable.ot/MikroTik
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 8/26/2019
Vulnerability Publication Date: 8/26/2019
Reference Information
CVE: CVE-2019-15055
CWE: 22