Approved changes feed: RSS · Atom
cpe:2.3:o:mikrotik:routeros:6.37.4:*:*:*:*:*:*:*
part: o version: 6.37.4 update: *
| Vendor | Mikrotik (b9632e46-e99f-51cb-bda8-96ec10af14a8) |
|---|---|
| Product | Routeros (5be6495a-2d29-5f58-a51c-efc242ed2bda) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2017-6297 |
vulnerable | 2026-06-03 14:37:27.546702 |
Details available
The L2TP Client in MikroTik RouterOS versions 6.83.3 and 6.37.4 does not enable IPsec encryption after a reboot, which allows man-in-the-middle attackers to view transmitted data unencrypted and gain access to networks on the L2TP server by monitoring the packets for the transmitted data and obtaining the L2TP secret.
Published: 2017-02-27T07:25:00.000Z
Updated: 2024-08-05T15:25:48.822Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.