{"vulnerability": "cve-2017-20149", "sightings": [{"uuid": "22f0d162-7949-40a5-bf05-806d0f101d46", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2017-20149", "type": "exploited", "source": "https://t.me/cibsecurity/51523", "content": "\u203c CVE-2017-20149 \u203c\n\nThe Mikrotik RouterOS web server allows memory corruption in releases before Stable 6.38.5 and Long-term 6.37.5, aka Chimay-Red. A remote and unauthenticated user can trigger the vulnerability by sending a crafted HTTP request. An attacker can use this vulnerability to execute arbitrary code on the affected system, as exploited in the wild in mid-2017 and later.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-10-15T07:29:23.000000Z"}, {"uuid": "9446ec3d-4ab9-4c80-97b6-189bac7eb3f2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2017-20149", "type": "seen", "source": "https://mastodon.social/users/hrbrmstr/statuses/115926602786770030", "content": "", "creation_timestamp": "2026-01-20T08:59:41.174785Z"}]}