216.73.216.86

CVE-2025-42611

· Published 05/05/2026 11:16 · Modified 05/05/2026 11:16

Labels: CVE-2025-42611 2026-05-05CVE-2025-42611CWE-295a6d3dc9e-0591-4a13-bce7-0f5b31ff6158

Essential information

Published
05/05/2026 11:16
Modified
05/05/2026 11:16
Author
Creator
CVSS
6.5 MEDIUM (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

CVSS metrics

Description

RouterOS provides various services that rely on correct verification of client and server certificates to secure confidentiality and integrity of communications. This includes OpenVPN, CAPsMAN, Dot1x (802.1X), among others. The vulnerability lies in shared certificate validation logic which uses the system certificate store that is shared and equally trusted by all system services. This causes confusion of scope, allowing any certificate authority present in the system-wide trust store to be trusted in any context (with some exceptions), allowing partial or full authentication bypass in CAPsMAN, OpenVPN, Dot1X and potentially others.

NVD status

Status
Received — CVE has been recently published to the CVE List and has been received by the NVD.
Source
a6d3dc9e-0591-4a13-bce7-0f5b31ff6158
NVD
View on NVD

Affected products (CPE)

ProductCPE
MikroTik / RouterOS cpe:2.3:a: MikroTik:RouterOS:*:*:*:*:*:*:*:*
MikroTik / OpenVPN cpe:2.3:a: MikroTik:OpenVPN:*:*:*:*:*:*:*:*
MikroTik / CAPsMAN cpe:2.3:a: MikroTik:CAPsMAN:*:*:*:*:*:*:*:*
MikroTik / Dot1X cpe:2.3:a: MikroTik:Dot1X:*:*:*:*:*:*:*:*

References