admin/cve
1
0
Fork 0
mirror of https://github.com/0xMarcio/cve.git synced 2025-05-30 18:20:53 +00:00
Code Issues Packages Projects Releases Wiki Activity
cve/2019/CVE-2019-15055.md

22 lines
1.1 KiB
Markdown
Raw Normal View History

Update Sun May 26 14:27:04 CEST 2024
2024-05-26 14:27:05 +02:00
### [CVE-2019-15055](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15055)
![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)
### Description
MikroTik RouterOS through 6.44.5 and 6.45.x through 6.45.3 improperly handles the disk name, which allows authenticated users to delete arbitrary files. Attackers can exploit this vulnerability to reset credential storage, which allows them access to the management interface as an administrator without authentication.
### POC
#### Reference
- https://github.com/tenable/routeros/tree/master/poc/cve_2019_15055
Update CVE sources 2024-06-09 00:33
2024-06-09 00:33:16 +00:00
- https://github.com/tenable/routeros/tree/master/poc/cve_2019_15055
Update Sun May 26 14:27:04 CEST 2024
2024-05-26 14:27:05 +02:00
- https://medium.com/tenable-techblog/rooting-routeros-with-a-usb-drive-16d7b8665f90
Update CVE sources 2024-06-09 00:33
2024-06-09 00:33:16 +00:00
- https://medium.com/tenable-techblog/rooting-routeros-with-a-usb-drive-16d7b8665f90
Update Sun May 26 14:27:04 CEST 2024
2024-05-26 14:27:05 +02:00
#### Github
- https://github.com/ARPSyndicate/cvemon
- https://github.com/alphaSeclab/sec-daily-2019
Reference in New Issue Copy Permalink