CVE-2020-11881

HIGH

MikroTik RouterOS 6.41.3-6.46.5 & 7.x <7.0 Beta5 - DoS via SMB Packet

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2020-11881. PoCs published by botlabsDev.

AI-analyzed exploit summary This repository contains a functional proof-of-concept exploit for CVE-2020-11881, a remote denial-of-service (DoS) vulnerability in MikroTik RouterOS SMB service. The exploit sends malformed SMB packets to crash the service.

Description

An array index error in MikroTik RouterOS 6.41.3 through 6.46.5, and 7.x through 7.0 Beta5, allows an unauthenticated remote attacker to crash the SMB server via modified setup-request packets, aka SUP-12964.

Exploits (1)

nomisec WORKING POC 10 stars

by botlabsDev · poc

https://github.com/botlabsDev/CVE-2020-11881

View Code ZIP pw:eip

This repository contains a functional proof-of-concept exploit for CVE-2020-11881, a remote denial-of-service (DoS) vulnerability in MikroTik RouterOS SMB service. The exploit sends malformed SMB packets to crash the service.

Classification

Working Poc 100%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: MikroTik RouterOS (versions up to 6.47.3, 7.1beta2)

No auth needed

Prerequisites: Network access to the target's SMB port (445)

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Core References

Vendor Advisory x_refsource_misc

https://mikrotik.com

Exploit, Third Party Advisory x_refsource_misc

https://github.com/botlabsDev/CVE-2020-11881

Scores

CVSS v3 7.5

EPSS 0.2117

EPSS Percentile 95.7%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-129

Status published

Products (2)

mikrotik/routeros 7.0 beta3 (3 CPE variants)

mikrotik/routeros 6.41.3 - 6.46.5

Published Sep 14, 2020

Tracked Since Feb 18, 2026