Known Vulnerabilities for RouterOS by MikroTik
Listed below are 10 of the newest known vulnerabilities associated with "RouterOS" by "MikroTik".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-39042 json | An issue in MikroTIk (SIA Mikrotikls, Latvia) RouterOS 7.21.x before v.7.21.4 and 7.22.x before v.7.22.2 allows a remote atta... | Not Provided | 2026-07-13 | 2026-07-14 |
| CVE-2026-7668 json | A vulnerability was identified in MikroTik RouterOS 6.49.8. This vulnerability affects the function ASN1_STRING_data in the l... | Not Provided | 2026-05-02 | 2026-05-20 |
| CVE-2025-42611 json | RouterOS provides various services that rely on correct verification of client and server certificates to secure confidential... | Not Provided | 2026-05-05 | 2026-05-05 |
| CVE-2024-27686 json | Mikrotik RouterOS (x86) 6.40.5 through 6.49.10 (fixed in 7) allows a remote attacker to cause a denial of service (device cra... | Not Provided | 2026-05-08 | 2026-05-08 |
| CVE-2023-47310 json | A misconfiguration in the default settings of MikroTik RouterOS 7 and fixed in v7.14 allows incoming IPv6 UDP traceroute pack... | Not Provided | 2025-06-30 | 2026-07-05 |
| CVE-2023-30800 json | The web server used by MikroTik RouterOS version 6 is affected by a heap memory corruption issue. A remote and unauthenticate... | 7.5 - HIGH | 2023-09-07 | 2023-09-12 |
| CVE-2023-30799 json | MikroTik RouterOS stable before 6.49.7 and long-term through 6.48.6 are vulnerable to a privilege escalation issue. A remote ... | 7.2 - HIGH | 2023-07-19 | 2023-07-28 |
| CVE-2023-24094 json | An issue in the bridge2 component of MikroTik RouterOS v6.40.5 allows attackers to cause a Denial of Service (DoS) via crafte... | 7.2 - HIGH | 2023-03-27 | 2026-07-09 |
| CVE-2022-45315 json | Not Provided | 2022-12-05 | 2026-04-09 | |
| CVE-2022-45313 json | Mikrotik RouterOs before stable v7.5 was discovered to contain an out-of-bounds read in the hotspot process. This vulnerabili... | 8.8 - HIGH | 2022-12-05 | 2023-02-03 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Operating System | Mikrotik | Routeros | 7.1 | |||
| Operating System | Mikrotik | Routeros | 7.1 | |||
| Operating System | Mikrotik | Routeros | 7.0 | |||
| Operating System | Mikrotik | Routeros | 7.0 | |||
| Operating System | Mikrotik | Routeros | 7.0 | |||
| Operating System | Mikrotik | Routeros | 7.0 | |||
| Operating System | Mikrotik | Routeros | 7.0 | |||
| Operating System | Mikrotik | Routeros | 6.9 | |||
| Operating System | Mikrotik | Routeros | 6.9 | |||
| Operating System | Mikrotik | Routeros | 6.9 | |||
| Operating System | Mikrotik | Routeros | 6.7 | |||
| Operating System | Mikrotik | Routeros | 6.7 | |||
| Operating System | Mikrotik | Routeros | 6.7 | |||
| Operating System | Mikrotik | Routeros | 6.6 | |||
| Operating System | Mikrotik | Routeros | 6.6 | |||
| Operating System | Mikrotik | Routeros | 6.6 | |||
| Operating System | Mikrotik | Routeros | 6.5 | |||
| Operating System | Mikrotik | Routeros | 6.5 | |||
| Operating System | Mikrotik | Routeros | 6.5 | |||
| Operating System | Mikrotik | Routeros | 6.47.3 |