{"vulnerability": "CVE-2017-20149", "sightings": [{"uuid": "9446ec3d-4ab9-4c80-97b6-189bac7eb3f2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "cve-2017-20149", "type": "seen", "source": "https://mastodon.social/users/hrbrmstr/statuses/115926602786770030", "content": "", "creation_timestamp": "2026-01-20T08:59:41.174785Z"}, {"uuid": "22f0d162-7949-40a5-bf05-806d0f101d46", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2017-20149", "type": "exploited", "source": "https://t.me/cibsecurity/51523", "content": "\u203c CVE-2017-20149 \u203c\n\nThe Mikrotik RouterOS web server allows memory corruption in releases before Stable 6.38.5 and Long-term 6.37.5, aka Chimay-Red. A remote and unauthenticated user can trigger the vulnerability by sending a crafted HTTP request. An attacker can use this vulnerability to execute arbitrary code on the affected system, as exploited in the wild in mid-2017 and later.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-10-15T07:29:23.000000Z"}, {"uuid": "3fe52db2-24d1-425a-ae8d-3d9fd7875a34", "vulnerability_lookup_origin": "caeb2787-0d58-4236-9039-7c86c3e566f3", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2017-20149", "type": "exploited", "source": "https://db.gcve.eu/known-exploited-vulnerabilities-catalog/3cb5c03f-a2ea-4274-8a16-d1aa1dbfe2c7", "content": "", "creation_timestamp": "2026-06-23T11:12:55.411463Z"}]}