Which versions of MikroTik RouterOS are affected by CVE-2026-7668?

CVE-2026-7668 is a memory disclosure vulnerability in MikroTik RouterOS 6.49.8 that allows unauthenticated remote attackers to read sensitive data and disrupt service through the SCEP endpoint.

Is there a public PoC exploit available for CVE-2026-7668?

Yes, a public proof-of-concept exploit is available for CVE-2026-7668. Prioritise patching immediately. EPSS: 0.0%.

MikroTik RouterOS CVE-2026-7668

Q: What is the CVSS score of CVE-2026-7668?

CVE-2026-7668 has a CVSS 4.0 base score of 5.5 (Medium). CVSS vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X. EPSS exploitation probability: 0.0%.

EUVD-2026-26801 MEDIUM

Out-of-bounds Read (CWE-125)

2026-05-02 VulDB

Buffer Overflow Information Disclosure Mikrotik

5.5

CVSS 4.0

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Lifecycle Timeline

Severity Changed

May 02, 2026 - 21:22 NVD

HIGH MEDIUM

CVSS changed

May 02, 2026 - 21:22 NVD

7.3 (HIGH) 5.5 (MEDIUM)

PoC Detected

May 02, 2026 - 21:16 vuln.today

Public exploit code

Analysis Generated

May 02, 2026 - 21:00 vuln.today

EUVD ID Assigned

May 02, 2026 - 20:30 euvd

EUVD-2026-26801

Analysis Generated

May 02, 2026 - 20:30 vuln.today

CVE Published

May 02, 2026 - 20:00 nvd

MEDIUM 5.5

DescriptionNVD

A vulnerability was identified in MikroTik RouterOS 6.49.8. This vulnerability affects the function ASN1_STRING_data in the library nova/lib/www/scep.p of the component SCEP Endpoint. The manipulation of the argument transactionID/messageType leads to out-of-bounds read. The attack may be initiated remotely. The exploit is publicly available and might be used. The vendor was contacted early about this disclosure but did not respond in any way.

AnalysisAI

Out-of-bounds read in MikroTik RouterOS 6.49.8 SCEP endpoint allows remote unauthenticated attackers to trigger memory disclosure and potential service disruption via malformed transactionID or messageType parameters. Public exploit code exists on GitHub. …

RemediationAI

Within 24 hours: Identify all RouterOS 6.49.8 deployments and isolate affected devices from untrusted networks; document current firmware version inventory. Within 7 days: Implement network access controls restricting SCEP endpoint (port 80/443) to authorized clients only; monitor for exploitation attempts targeting transactionID and messageType parameters. …

Analysis

Detailed AI-generated intelligence summary covering attack vector, impact assessment, affected versions, remediation steps, and indicators of compromise.

POChttps://••••••••••.com/exploit

PATCHhttps://••••••••••.com/patch

ADVISORYhttps://••••••••••.com/advisory

Full analysis requires sign-in

Get intelligence summaries, risk assessment, exploit details, threat intel, and remediation guidance.

CVE-2026-7668 vulnerability details – vuln.today

Back

MikroTik RouterOS CVE-2026-7668

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

RemediationAI

Analysis

Full analysis requires sign-in

Share

MikroTik RouterOS CVE-2026-7668

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

RemediationAI

Full analysis requires sign-in

Share

External POC / Exploit Code