CVE-2024-54772

An issue was discovered in the Winbox service of MikroTik RouterOS long-term release v6.43.13 through v6.49.13 and stable v6.43 through v7.17.2. A patch is available in the stable release v6.49.18. A discrepancy in response size between connection attempts made with a valid username and those with an invalid username allows attackers to enumerate for valid accounts.

CVSS v3 5.4 MEDIUM

5.4^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 2.8 / Impact : 2.5

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact LOW

Integrity Impact LOW

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
https://github.com/deauther890/CVE-2024-54772	Third Party Advisory Exploit

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:mikrotik:routeros:::::-:::*
	cpe:2.3:o:mikrotik:routeros:::::ltr:::*
	cpe:2.3:o:mikrotik:routeros:::::-:::*

History

No history.

Information

Published : 2025-02-11 23:15

Updated : 2025-06-30 14:48

NVD link : CVE-2024-54772

Mitre link : CVE-2024-54772

CVE.ORG link : CVE-2024-54772

JSON object : View

Products Affected

mikrotik

routeros

CWE

CWE-208

Observable Timing Discrepancy

{"id": "CVE-2024-54772", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.4, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}, "impactScore": 2.5, "exploitabilityScore": 2.8}]}, "published": "2025-02-11T23:15:09.117", "references": [{"url": "https://github.com/deauther890/CVE-2024-54772", "tags": ["Third Party Advisory", "Exploit"], "source": "[email protected]"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "description": [{"lang": "en", "value": "CWE-208"}]}], "descriptions": [{"lang": "en", "value": "An issue was discovered in the Winbox service of MikroTik RouterOS long-term release v6.43.13 through v6.49.13 and stable v6.43 through v7.17.2. A patch is available in the stable release v6.49.18. A discrepancy in response size between connection attempts made with a valid username and those with an invalid username allows attackers to enumerate for valid accounts."}, {"lang": "es", "value": "Se descubri\u00f3 un problema en el servicio Winbox de MikroTik RouterOS v6.43 a v7.16.1 versiones v6.43.13 hasta v6.49.13 y estables desde v6.43 hasta v7.17.2. Hay disponible un parche en la versi\u00f3n estable v6.49.18. Una discrepancia en el tama\u00f1o de respuesta entre los intentos de conexi\u00f3n realizados con un nombre de usuario v\u00e1lido y aquellos con un nombre de usuario no v\u00e1lido permite a los atacantes realizar una enumeraci\u00f3n de cuentas v\u00e1lidas."}], "lastModified": "2025-06-30T14:48:12.073", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:mikrotik:routeros:*:*:*:*:-:*:*:*", "vulnerable": true, "matchCriteriaId": "F618C1B1-340C-4893-A0FF-23B533F787E3", "versionEndExcluding": "6.49.18", "versionStartIncluding": "6.43"}, {"criteria": "cpe:2.3:o:mikrotik:routeros:*:*:*:*:ltr:*:*:*", "vulnerable": true, "matchCriteriaId": "2DD4F8E4-8A7E-408E-ACF8-C7D003D78027", "versionEndIncluding": "6.49.13", "versionStartIncluding": "6.43.13"}, {"criteria": "cpe:2.3:o:mikrotik:routeros:*:*:*:*:-:*:*:*", "vulnerable": true, "matchCriteriaId": "BD087026-C45D-44F3-A305-41A07FDB14EC", "versionEndExcluding": "7.18", "versionStartIncluding": "7.1"}], "operator": "OR"}]}], "sourceIdentifier": "[email protected]"}