CVE-2025-6563

216.73.216.6

· Published 03/07/2025 12:15 · Modified 03/07/2025 15:13

Labels: CVE-2025-6563 1c6b5737-9389-4011-8117-89fa251edfb2 2025-07-03 CVE-2025-6563 CWE-20

Essential information

Published: 03/07/2025 12:15
Modified: 03/07/2025 15:13
Author: —
Creator: —
CVSS: 4.8 MEDIUM (v3) 4.8 MEDIUM (v4.0)
CISA KEV: No
CWE: —
CVSS vector: —

CVSS metrics

Description

A cross-site scripting vulnerability is present in the hotspot of MikroTik's RouterOS on versions below 7.19.2. An attacker can inject the `javascript` protocol in the `dst` parameter. When the victim browses to the malicious URL and logs in, the XSS executes. The POST request used to login, can also be converted to a GET request, allowing an attacker to send a specifically crafted URL that automatically logs in the victim (into the attacker's account) and triggers the payload.

NVD status

Status: Awaiting Analysis — CVE has been marked for Analysis. Normally once in this state the CVE will be analyzed by NVD staff within 24 hours.
Source: 1c6b5737-9389-4011-8117-89fa251edfb2
NVD: View on NVD

Affected products (CPE)

Product	CPE
mikrotik / routeros	`cpe:2.3:a:mikrotik:routeros:<7.19.2:::::::*`