CVE-2022-45315

MEDIUM 6.4

CVSS Score

6.4

EPSS Score

2.9%

EPSS Percentile

86th

Mikrotik RouterOs before stable v7.6 was discovered to contain an out-of-bounds read in the snmp process. This vulnerability allows authenticated attackers to execute arbitrary code via a crafted packet.

CWE	CWE-125
Vendor	microtik
Product	routeros
Published	Dec 5, 2022
Last Updated	Apr 9, 2026

Stay Ahead of the Next One

Get instant alerts for microtik routeros

Be the first to know when new medium vulnerabilities affecting microtik routeros are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

Affected Versions

MicroTik / RouterOS

0 < 7.6 2022-10-31

References

NVD ↗ CVE.org ↗ EPSS Data ↗

github.com: https://github.com/cq674350529/pocs_slides/blob/master/advisory/MikroTik/CVE-2022-45315/README.md