An attacker sends a specially crafted payload to the SCEP server. To trigger the overflow, the attacker must know the scep_server_name value.
Vulnerability Exposure & Notification on Mikrotik (CVE-2021-41987) mikrotik 6.47.10 exploit
This vulnerability specifically affects RouterOS versions 6.46.8, 6.47.9, and 6.47.10 . Other Relevant Vulnerabilities An attacker sends a specially crafted payload to
This vulnerability is a within the SCEP server component of RouterOS. mikrotik 6.47.10 exploit
This high-severity flaw allows an authenticated "admin" user to escalate to "super-admin" privileges. This allows for a root shell on the underlying OS. While it requires initial access, many MikroTik devices are vulnerable to brute-force attacks due to default "admin" usernames.
The primary exploit associated with version is CVE-2021-41987 , which involves the SCEP (Simple Certificate Enrollment Protocol) server. The Primary Exploit: CVE-2021-41987