Mikrotik
RouterOS
See the latest tracked release, confirm when it was published, and subscribe for update emails.
7.23.1
- Release date
- June 03, 2026
- Security status
- 1 high-severity CVE tracked in the last 90 days. Current version not affected.
Source
Vendor Release Information
Public release notes are linked for the latest stored release.
Release history
See the latest published releases stored for this product.
| Version | Published | Notes |
|---|---|---|
| 7.23.1 | 2026-06-03 | Release Notes |
| 7.23 | 2026-05-26 | Release Notes |
| 7.22.3 | 2026-05-08 | Release Notes |
| 7.22.2 | 2026-04-23 | Release Notes |
| 7.22.1 | 2026-03-24 | Release Notes |
Vulnerability tracking
versionPing monitors CVEs for this product. Matching CVEs are listed below. We only display CVEs with a CVSS score of 7.0 or higher that were published within the last 90 days.
Affected status is inferred from published affected version ranges where available. Always verify against the vendor advisory before making production decisions.
| CVE | Severity | Published | Status | Summary |
|---|---|---|---|---|
| CVE-2026-7668 | UNKNOWN (7.5) | 2026-05-02 | Current versionnot affected | A vulnerability was identified in MikroTik RouterOS 6.49.8. This vulnerability affects the function ASN1_STRING_data in the library nova/lib/www/scep.p of the component SCEP Endpoint. The manipulation of the argument transactionID/messageType leads to out-of-bounds read. The attack may be initiated remotely. The exploit is publicly available and might be used. You should upgrade the affected component. The vendor recommends to "use the latest v6.x or 7.x MikroTik RouterOS version, the reported issue should be fixed there." Affected versions
|