MikroTik RouterOS SSL/TLS Renegotiation DoS Vulnerability
CVE-2022-36324 Published on August 10, 2022

Affected devices do not properly handle the renegotiation of SSL/TLS parameters. This could allow an unauthenticated remote attacker to bypass the TCP brute force prevention and lead to a denial of service condition for the duration of the attack.

NVD

Weakness Type

Allocation of Resources Without Limits or Throttling

The software allocates a reusable resource or group of resources on behalf of an actor without imposing any restrictions on the size or number of resources that can be allocated, in violation of the intended security policy for that actor.

Products Associated with CVE-2022-36324

Want to know whenever a new CVE is published for MikroTik Routeros? stack.watch will email you.

MikroTik Routeros

Affected Versions

Siemens RUGGEDCOM RM1224 LTE(4G) EU:

Version All versions < V7.1.2 is affected.

Siemens RUGGEDCOM RM1224 LTE(4G) NAM:

Version All versions < V7.1.2 is affected.

Siemens SCALANCE M804PB:

Version All versions < V7.1.2 is affected.

Siemens SCALANCE M812-1 ADSL-Router (Annex A):

Version All versions < V7.1.2 is affected.

Siemens SCALANCE M812-1 ADSL-Router (Annex B):

Version All versions < V7.1.2 is affected.

Siemens SCALANCE M816-1 ADSL-Router (Annex A):

Version All versions < V7.1.2 is affected.

Siemens SCALANCE M816-1 ADSL-Router (Annex B):

Version All versions < V7.1.2 is affected.

Siemens SCALANCE M826-2 SHDSL-Router:

Version All versions < V7.1.2 is affected.

Siemens SCALANCE M874-2:

Version All versions < V7.1.2 is affected.

Siemens SCALANCE M874-3:

Version All versions < V7.1.2 is affected.

Siemens SCALANCE M876-3 (EVDO):

Version All versions < V7.1.2 is affected.

Siemens SCALANCE M876-3 (ROK):

Version All versions < V7.1.2 is affected.

Siemens SCALANCE M876-4 (EU):

Version All versions < V7.1.2 is affected.

Siemens SCALANCE M876-4 (NAM):

Version All versions < V7.1.2 is affected.

Siemens SCALANCE MUM853-1 (EU):

Version All versions < V7.1.2 is affected.

Siemens SCALANCE MUM856-1 (EU):

Version All versions < V7.1.2 is affected.

Siemens SCALANCE MUM856-1 (RoW):

Version All versions < V7.1.2 is affected.

Siemens SCALANCE S615:

Version All versions < V7.1.2 is affected.

Siemens SCALANCE SC622-2C:

Version All versions < V2.3.1 is affected.

Siemens SCALANCE SC626-2C:

Version All versions < V2.3.1 is affected.

Siemens SCALANCE SC632-2C:

Version All versions < V2.3.1 is affected.

Siemens SCALANCE SC636-2C:

Version All versions < V2.3.1 is affected.

Siemens SCALANCE SC642-2C:

Version All versions < V2.3.1 is affected.

Siemens SCALANCE SC646-2C:

Version All versions < V2.3.1 is affected.

Siemens SCALANCE W1748-1 M12:

Version All versions is affected.

Siemens SCALANCE W1748-1 M12:

Version All versions is affected.

Siemens SCALANCE W1788-1 M12:

Version All versions is affected.

Siemens SCALANCE W1788-2 EEC M12:

Version All versions is affected.

Siemens SCALANCE W1788-2 M12:

Version All versions is affected.

Siemens SCALANCE W1788-2IA M12:

Version All versions is affected.

Siemens SCALANCE W721-1 RJ45:

Version All versions is affected.

Siemens SCALANCE W721-1 RJ45:

Version All versions is affected.

Siemens SCALANCE W722-1 RJ45:

Version All versions is affected.

Siemens SCALANCE W722-1 RJ45:

Version All versions is affected.

Siemens SCALANCE W722-1 RJ45:

Version All versions is affected.

Siemens SCALANCE W734-1 RJ45:

Version All versions is affected.

Siemens SCALANCE W734-1 RJ45:

Version All versions is affected.

Siemens SCALANCE W734-1 RJ45:

Version All versions is affected.

Siemens SCALANCE W734-1 RJ45 (USA):

Version All versions is affected.

Siemens SCALANCE W738-1 M12:

Version All versions is affected.

Siemens SCALANCE W738-1 M12:

Version All versions is affected.

Siemens SCALANCE W748-1 M12:

Version All versions is affected.

Siemens SCALANCE W748-1 M12:

Version All versions is affected.

Siemens SCALANCE W748-1 RJ45:

Version All versions is affected.

Siemens SCALANCE W748-1 RJ45:

Version All versions is affected.

Siemens SCALANCE W761-1 RJ45:

Version All versions is affected.

Siemens SCALANCE W761-1 RJ45:

Version All versions is affected.

Siemens SCALANCE W774-1 M12 EEC:

Version All versions is affected.

Siemens SCALANCE W774-1 M12 EEC:

Version All versions is affected.

Siemens SCALANCE W774-1 RJ45:

Version All versions is affected.

Siemens SCALANCE W774-1 RJ45:

Version All versions is affected.

Siemens SCALANCE W774-1 RJ45:

Version All versions is affected.

Siemens SCALANCE W774-1 RJ45:

Version All versions is affected.

Siemens SCALANCE W774-1 RJ45 (USA):

Version All versions is affected.

Siemens SCALANCE W778-1 M12:

Version All versions is affected.

Siemens SCALANCE W778-1 M12:

Version All versions is affected.

Siemens SCALANCE W778-1 M12 EEC:

Version All versions is affected.

Siemens SCALANCE W778-1 M12 EEC (USA):

Version All versions is affected.

Siemens SCALANCE W786-1 RJ45:

Version All versions is affected.

Siemens SCALANCE W786-1 RJ45:

Version All versions is affected.

Siemens SCALANCE W786-2 RJ45:

Version All versions is affected.

Siemens SCALANCE W786-2 RJ45:

Version All versions is affected.

Siemens SCALANCE W786-2 RJ45:

Version All versions is affected.

Siemens SCALANCE W786-2 SFP:

Version All versions is affected.

Siemens SCALANCE W786-2 SFP:

Version All versions is affected.

Siemens SCALANCE W786-2IA RJ45:

Version All versions is affected.

Siemens SCALANCE W786-2IA RJ45:

Version All versions is affected.

Siemens SCALANCE W788-1 M12:

Version All versions is affected.

Siemens SCALANCE W788-1 M12:

Version All versions is affected.

Siemens SCALANCE W788-1 RJ45:

Version All versions is affected.

Siemens SCALANCE W788-1 RJ45:

Version All versions is affected.

Siemens SCALANCE W788-2 M12:

Version All versions is affected.

Siemens SCALANCE W788-2 M12:

Version All versions is affected.

Siemens SCALANCE W788-2 M12 EEC:

Version All versions is affected.

Siemens SCALANCE W788-2 M12 EEC:

Version All versions is affected.

Siemens SCALANCE W788-2 M12 EEC:

Version All versions is affected.

Siemens SCALANCE W788-2 RJ45:

Version All versions is affected.

Siemens SCALANCE W788-2 RJ45:

Version All versions is affected.

Siemens SCALANCE W788-2 RJ45:

Version All versions is affected.

Siemens SCALANCE WAM763-1:

Version All versions < V2.0 is affected.

Siemens SCALANCE WAM766-1 (EU):

Version All versions < V2.0 is affected.

Siemens SCALANCE WAM766-1 (US):

Version All versions < V2.0 is affected.

Siemens SCALANCE WAM766-1 EEC (EU):

Version All versions < V2.0 is affected.

Siemens SCALANCE WAM766-1 EEC (US):

Version All versions < V2.0 is affected.

Siemens SCALANCE WUM763-1:

Version All versions < V2.0 is affected.

Siemens SCALANCE WUM763-1:

Version All versions < V2.0 is affected.

Siemens SCALANCE WUM766-1 (EU):

Version All versions < V2.0 is affected.

Siemens SCALANCE WUM766-1 (US):

Version All versions < V2.0 is affected.

Siemens SCALANCE XB205-3 (SC, PN):

Version All versions < V4.4 is affected.

Siemens SCALANCE XB205-3 (ST, E/IP):

Version All versions < V4.4 is affected.

Siemens SCALANCE XB205-3 (ST, E/IP):

Version All versions < V4.4 is affected.

Siemens SCALANCE XB205-3 (ST, PN):

Version All versions < V4.4 is affected.

Siemens SCALANCE XB205-3LD (SC, E/IP):

Version All versions < V4.4 is affected.

Siemens SCALANCE XB205-3LD (SC, PN):

Version All versions < V4.4 is affected.

Siemens SCALANCE XB208 (E/IP):

Version All versions < V4.4 is affected.

Siemens SCALANCE XB208 (PN):

Version All versions < V4.4 is affected.

Siemens SCALANCE XB213-3 (SC, E/IP):

Version All versions < V4.4 is affected.

Siemens SCALANCE XB213-3 (SC, PN):

Version All versions < V4.4 is affected.

Siemens SCALANCE XB213-3 (ST, E/IP):

Version All versions < V4.4 is affected.

Siemens SCALANCE XB213-3 (ST, PN):

Version All versions < V4.4 is affected.

Siemens SCALANCE XB213-3LD (SC, E/IP):

Version All versions < V4.4 is affected.

Siemens SCALANCE XB213-3LD (SC, PN):

Version All versions < V4.4 is affected.

Siemens SCALANCE XB216 (E/IP):

Version All versions < V4.4 is affected.

Siemens SCALANCE XB216 (PN):

Version All versions < V4.4 is affected.

Siemens SCALANCE XC206-2 (SC):

Version All versions < V4.4 is affected.

Siemens SCALANCE XC206-2 (ST/BFOC):

Version All versions < V4.4 is affected.

Siemens SCALANCE XC206-2G PoE:

Version All versions < V4.4 is affected.

Siemens SCALANCE XC206-2G PoE (54 V DC):

Version All versions < V4.4 is affected.

Siemens SCALANCE XC206-2G PoE EEC (54 V DC):

Version All versions < V4.4 is affected.

Siemens SCALANCE XC206-2SFP:

Version All versions < V4.4 is affected.

Siemens SCALANCE XC206-2SFP EEC:

Version All versions < V4.4 is affected.

Siemens SCALANCE XC206-2SFP G:

Version All versions < V4.4 is affected.

Siemens SCALANCE XC206-2SFP G (EIP DEF.):

Version All versions < V4.4 is affected.

Siemens SCALANCE XC206-2SFP G EEC:

Version All versions < V4.4 is affected.

Siemens SCALANCE XC208:

Version All versions < V4.4 is affected.

Siemens SCALANCE XC208EEC:

Version All versions < V4.4 is affected.

Siemens SCALANCE XC208G:

Version All versions < V4.4 is affected.

Siemens SCALANCE XC208G (EIP def.):

Version All versions < V4.4 is affected.

Siemens SCALANCE XC208G EEC:

Version All versions < V4.4 is affected.

Siemens SCALANCE XC208G PoE:

Version All versions < V4.4 is affected.

Siemens SCALANCE XC208G PoE (54 V DC):

Version All versions < V4.4 is affected.

Siemens SCALANCE XC216:

Version All versions < V4.4 is affected.

Siemens SCALANCE XC216-3G PoE:

Version All versions < V4.4 is affected.

Siemens SCALANCE XC216-3G PoE (54 V DC):

Version All versions < V4.4 is affected.

Siemens SCALANCE XC216-4C:

Version All versions < V4.4 is affected.

Siemens SCALANCE XC216-4C G:

Version All versions < V4.4 is affected.

Siemens SCALANCE XC216-4C G (EIP Def.):

Version All versions < V4.4 is affected.

Siemens SCALANCE XC216-4C G EEC:

Version All versions < V4.4 is affected.

Siemens SCALANCE XC216EEC:

Version All versions < V4.4 is affected.

Siemens SCALANCE XC224:

Version All versions < V4.4 is affected.

Siemens SCALANCE XC224-4C G:

Version All versions < V4.4 is affected.

Siemens SCALANCE XC224-4C G (EIP Def.):

Version All versions < V4.4 is affected.

Siemens SCALANCE XC224-4C G EEC:

Version All versions < V4.4 is affected.

Siemens SCALANCE XF204:

Version All versions < V4.4 is affected.

Siemens SCALANCE XF204 DNA:

Version All versions < V4.4 is affected.

Siemens SCALANCE XF204-2BA:

Version All versions < V4.4 is affected.

Siemens SCALANCE XF204-2BA DNA:

Version All versions < V4.4 is affected.

Siemens SCALANCE XM408-4C:

Version All versions < V6.6 is affected.

Siemens SCALANCE XM408-4C (L3 int.):

Version All versions < V6.6 is affected.

Siemens SCALANCE XM408-8C:

Version All versions < V6.6 is affected.

Siemens SCALANCE XM408-8C (L3 int.):

Version All versions < V6.6 is affected.

Siemens SCALANCE XM416-4C:

Version All versions < V6.6 is affected.

Siemens SCALANCE XM416-4C (L3 int.):

Version All versions < V6.6 is affected.

Siemens SCALANCE XP208:

Version All versions < V4.4 is affected.

Siemens SCALANCE XP208 (Ethernet/IP):

Version All versions < V4.4 is affected.

Siemens SCALANCE XP208EEC:

Version All versions < V4.4 is affected.

Siemens SCALANCE XP208PoE EEC:

Version All versions < V4.4 is affected.

Siemens SCALANCE XP216:

Version All versions < V4.4 is affected.

Siemens SCALANCE XP216 (Ethernet/IP):

Version All versions < V4.4 is affected.

Siemens SCALANCE XP216EEC:

Version All versions < V4.4 is affected.

Siemens SCALANCE XP216POE EEC:

Version All versions < V4.4 is affected.

Siemens SCALANCE XR324WG (24 x FE, AC 230V):

Version All versions < V4.4 is affected.

Siemens SCALANCE XR324WG (24 X FE, DC 24V):

Version All versions < V4.4 is affected.

Siemens SCALANCE XR326-2C PoE WG:

Version All versions < V4.4 is affected.

Siemens SCALANCE XR326-2C PoE WG (without UL):

Version All versions < V4.4 is affected.

Siemens SCALANCE XR328-4C WG (24XFE, 4XGE, 24V):

Version All versions < V4.4 is affected.

Siemens SCALANCE XR328-4C WG (24xFE, 4xGE,DC24V):

Version All versions < V4.4 is affected.

Siemens SCALANCE XR328-4C WG (24xFE,4xGE,AC230V):

Version All versions < V4.4 is affected.

Siemens SCALANCE XR328-4C WG (24xFE,4xGE,AC230V):

Version All versions < V4.4 is affected.

Siemens SCALANCE XR328-4C WG (28xGE, AC 230V):

Version All versions < V4.4 is affected.

Siemens SCALANCE XR328-4C WG (28xGE, DC 24V):

Version All versions < V4.4 is affected.

Siemens SCALANCE XR524-8C, 1x230V:

Version All versions < V6.6 is affected.

Siemens SCALANCE XR524-8C, 1x230V (L3 int.):

Version All versions < V6.6 is affected.

Siemens SCALANCE XR524-8C, 24V:

Version All versions < V6.6 is affected.

Siemens SCALANCE XR524-8C, 24V (L3 int.):

Version All versions < V6.6 is affected.

Siemens SCALANCE XR524-8C, 2x230V:

Version All versions < V6.6 is affected.

Siemens SCALANCE XR524-8C, 2x230V (L3 int.):

Version All versions < V6.6 is affected.

Siemens SCALANCE XR526-8C, 1x230V:

Version All versions < V6.6 is affected.

Siemens SCALANCE XR526-8C, 1x230V (L3 int.):

Version All versions < V6.6 is affected.

Siemens SCALANCE XR526-8C, 24V:

Version All versions < V6.6 is affected.

Siemens SCALANCE XR526-8C, 24V (L3 int.):

Version All versions < V6.6 is affected.

Siemens SCALANCE XR526-8C, 2x230V:

Version All versions < V6.6 is affected.

Siemens SCALANCE XR526-8C, 2x230V (L3 int.):

Version All versions < V6.6 is affected.

Siemens SCALANCE XR528-6M:

Version All versions < V6.6 is affected.

Siemens SCALANCE XR528-6M (2HR2, L3 int.):

Version All versions < V6.6 is affected.

Siemens SCALANCE XR528-6M (2HR2):

Version All versions < V6.6 is affected.

Siemens SCALANCE XR528-6M (L3 int.):

Version All versions < V6.6 is affected.

Siemens SCALANCE XR552-12M:

Version All versions < V6.6 is affected.

Siemens SCALANCE XR552-12M (2HR2, L3 int.):

Version All versions < V6.6 is affected.

Siemens SCALANCE XR552-12M (2HR2):

Version All versions < V6.6 is affected.

Siemens SCALANCE XR552-12M (2HR2):

Version All versions < V6.6 is affected.

Siemens SIPLUS NET SCALANCE XC206-2:

Version All versions < V4.4 is affected.

Siemens SIPLUS NET SCALANCE XC206-2SFP:

Version All versions < V4.4 is affected.

Siemens SIPLUS NET SCALANCE XC208:

Version All versions < V4.4 is affected.

Siemens SIPLUS NET SCALANCE XC216-4C:

Version All versions < V4.4 is affected.

Exploit Probability

EPSS

1.07%

Percentile

77.49%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

MikroTik RouterOS SSL/TLS Renegotiation DoS VulnerabilityCVE-2022-36324 Published on August 10, 2022

Weakness Type

Allocation of Resources Without Limits or Throttling

Products Associated with CVE-2022-36324

Affected Versions

Exploit Probability

MikroTik RouterOS SSL/TLS Renegotiation DoS Vulnerability
CVE-2022-36324 Published on August 10, 2022