CVE-2021-41987 is a vulnerability in MikroTik Routeros
Published on March 16, 2022
In the SCEP Server of RouterOS in certain Mikrotik products, an attacker can trigger a heap-based buffer overflow that leads to remote code execution. The attacker must know the scep_server_name value. This affects RouterOS 6.46.8, 6.47.9, and 6.47.10.
Products Associated with CVE-2021-41987
Want to know whenever a new CVE is published for MikroTik Routeros? stack.watch will email you.
Exploit Probability
EPSS
49.62%
Percentile
97.77%
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.