Enviar #798623: MikroTik RouterOS 6.49.8 Out-of-Bounds Readinformación

TítuloMikroTik RouterOS 6.49.8 Out-of-Bounds Read
DescripciónAn out-of-bounds read vulnerability exists in the nova/lib/www/scep.p component of MikroTik RouterOS firmware. The SCEP server parses attacker-controlled PKCS#7 signed attributes such as transactionID and messageType by returning raw ASN1_STRING_data() pointers and later consuming those values with NUL-terminated C-string semantics. An attacker who can reach an enabled SCEP endpoint can send a crafted PKIOperation request containing a non-NUL-terminated ASN.1 PrintableString and trigger reads beyond the original ASN.1 attribute boundary, leading to pre-authentication information disclosure in certRep replies and abnormal parser behavior.
Fuente⚠️ https://github.com/ezio315/cve/issues/4
Usuario
 Anonymous User
Sumisión2026-04-07 11:11 (hace 2 meses)
Moderación2026-05-02 07:56 (25 days later)
EstadoAceptado
Entrada de VulDB360804 [MikroTik RouterOS 6.49.8 SCEP Endpoint nova/lib/www/scep.p ASN1_STRING_data transactionID/messageType divulgación de información]
Puntos20

AnteriorVisión De ConjuntoPróximo

Do you know our Splunk app?

Download it now for free!