Insecure Autoupgrade Feature Allows Remote Attackers to Downgrade RouterOS and Reset Credentials

Insecure Autoupgrade Feature Allows Remote Attackers to Downgrade RouterOS and Reset Credentials

CVE-2019-3977 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

RouterOS 6.45.6 Stable, RouterOS 6.44.5 Long-term, and below insufficiently validate where upgrade packages are download from when using the autoupgrade feature. Therefore, a remote attacker can trick the router into "upgrading" to an older version of RouterOS and possibly reseting all the system's usernames and passwords.

Learn more about our User Device Pen Test.