← ExploitWatch
HomeExploited Vulnerabilities

CVE-2018-7445 — Actively Exploited: RouterOS (MikroTik)

In MikroTik RouterOS, a stack-based buffer overflow occurs when processing NetBIOS session request messages. Remote attackers with access to the service can exploit this vulnerability and gain code execution on the system.

CVE IDCVE-2018-7445
VendorMikroTik
ProductRouterOS
Vulnerability nameMikroTik RouterOS Stack-Based Buffer Overflow Vulnerability
Date added2022-09-08
Remediation due2022-09-29
Known ransomware useUnknown
Required actionApply updates per vendor instructions.
DescriptionIn MikroTik RouterOS, a stack-based buffer overflow occurs when processing NetBIOS session request messages. Remote attackers with access to the service can exploit this vulnerability and gain code execution on the system.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →