Stack Exhaustion Vulnerability in Mikrotik RouterOS

Stack Exhaustion Vulnerability in Mikrotik RouterOS

CVE-2018-1158 · MEDIUM Severity

AV:N/AC:L/AU:S/C:N/I:N/A:P

Mikrotik RouterOS before 6.42.7 and 6.40.9 is vulnerable to a stack exhaustion vulnerability. An authenticated remote attacker can crash the HTTP server via recursive parsing of JSON.

Learn more about our Cis Benchmark Audit For Server Software.