I came across this article and im wondering if anyone knows wether RouterOS is affected by this or not? Atleast Cisco and Zyxel has patched theirs already.
https://threatpost.com/researchers-break-ipsec-vpn-connections-with-20-year-old-protocol-flaw/135070/
The source of these is this document:
https://www.ei.rub.de/media/nds/veroeffentlichungen/2018/08/13/sec18-felsch.pdf
It outlines 5 problems with the IPsec IKE itself.
Four of these RouterOS is not affected, the last one, involving dictionary attacks, we have added a Warning in RouterOS, that is shown when you use the particular authentication method, that you must use a hard to brute-force PSK.