Remote Code Execution Vulnerability in MikroTik RouterOS
CVE-2021-27221

8.1HIGH

Key Information:

Vendor: Mikrotik
Status: Routeros
Vendor: CVE Published:; 19 March 2021

What is CVE-2021-27221?

MikroTik RouterOS versions, specifically 6.47.9, allow remote authenticated FTP users to create or overwrite arbitrary .rsc files through the /export command. This behavior has been categorized by the vendor as intended due to user policy configurations, which poses a significant risk if not properly managed. Organizations using this version of RouterOS should review their FTP access policies to mitigate potential security threats.

References

https://onovy.medium.com/routeros-user-with-just-ftp-poli...

x_refsource_MISC

EPSS Score

41% chance of being exploited in the next 30 days.

CVSS V3.1

Score:

8.1

Severity:

HIGH

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Mar 19, 2021
Vulnerability Reserved
Feb 15, 2021

Mikrotik

What is CVE-2021-27221?

References

EPSS Score

CVSS V3.1

Timeline