What is CVE-2025-42611?

CVE-2025-42611 is a medium-severity vulnerability in Mikrotik Routeros, classified under Improper Certificate Validation. CVSS score: 6.5/10. Published 2026-05-05.

How severe is CVE-2025-42611?

Medium severity. CVSS v3 base score is 6.5 out of 10.

Vulnerability in Mikrotik Routeros

CVE-2025-42611

RouterOS provides various services that rely on correct verification of client and server certificates to secure confidentiality and integrity of communications. This includes OpenVPN, CAPsMAN, Dot1x (802.1X), among others. The vulnerab…

Vulnerability class: Improper Certificate Validation

EPSS: 0.000 (1.0th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 6.5 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N.

Affected products

Mikrotik Routeros — versions 0

Weakness classification (CWE)

CWE-295 — Improper Certificate Validation

References

a6d3dc9e-0591-4a13-bce7-0f5b31ff6158 (government-resource, third-party-advisory)

Frequently asked questions

What is CVE-2025-42611?: CVE-2025-42611 is a medium-severity vulnerability in Mikrotik Routeros, classified under Improper Certificate Validation. CVSS score: 6.5/10. Published 2026-05-05.
How severe is CVE-2025-42611?: Medium severity. CVSS v3 base score is 6.5 out of 10.