CVE-2024-54772 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

An issue was discovered in the Winbox service of MikroTik RouterOS long-term release v6.43.13 through v6.49.13 and stable v6.43 through v7.17.2. A patch is avai…
Medium CVSS: 5.4

CVE-2024-54772

An issue was discovered in the Winbox service of MikroTik RouterOS long-term release v6.43.13 through v6.49.13 and stable v6.43 through v7.17.2. A patch is available in the stable release v6.49.18. A discrepancy in response size between connection attempts made with a valid username and those with an invalid username allows attackers to enumerate for valid accounts.
Vendor
Mikrotik
Product
Routeros
CWE
CWE-208
Yayın Tarihi
2025-02-11 23:15:09
Güncelleme
2025-06-30 14:48:12
Source Identifier
cve@mitre.org
KEV Date Added
-

Kategoriler

CWE-208 Routeros MEDIUM Mikrotik 2025

Referanslar

https://github.com/deauther890/CVE-2024-54772