CVE-2022-34960

Published: Aug 25, 2022Modified: Nov 21, 2024

9.8

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 5.9

Source: NVD

Description

The container package in MikroTik RouterOS 7.4beta4 allows an attacker to create mount points pointing to symbolic links, which resolve to locations on the host device. This allows the attacker to mount any arbitrary file to any location on the host.

Affected (1)

Products: Mikrotik: Routeros

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Mikrotik Routeros	Version 7.4 beta4

Related CWEs

Improper Link Resolution Before File Access ('Link Following')

The product attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource.

References (4)

https://nns.ee/blog/2022/06/21/routeros-container-rce.html

Source: cve@mitre.org

Broken Link

https://nns.ee/blog/2022/08/05/routeros-container-rce.html

Source: cve@mitre.org

ExploitThird Party Advisory

https://nns.ee/blog/2022/06/21/routeros-container-rce.html

Source: af854a3a-2127-422b-91ae-364da2661108

Broken Link

https://nns.ee/blog/2022/08/05/routeros-container-rce.html

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

Timeline

No history available yet.