You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
mikr now tells you when MikroTik ships a security fix on your branch — even when no CVE exists. Alongside the CVE feed, mikr reads the RouterOS release changelogs for the branches you actually run and flags any device sitting below a release that fixed something security-related. A new Security → Vendor patches tab lists them, the device page shows it on the security card, and a security-patch-available webhook can notify you.
This is a patch-gap signal, kept deliberately separate from the CVE list: a changelog names the version that fixes an issue, never the versions affected by it. So mikr tells you "a security release exists on your branch and you're below it" — it does not claim the device is vulnerable, and it never guesses about other branches.
It also remembers what the vendor published. Security lines are snapshotted the first time they're seen. If MikroTik later edits or removes one — which does happen — mikr keeps the original wording and shows you that it changed. That is the whole reason this feature exists: a recent RouterOS release named a CVE in its changelog, then the mention was taken out, and that id appears in no public vulnerability database at all. No CVE scanner could ever have shown it to you.