THREATOPS
THREAT OPSCVEs › CVE-2018-14847

CVE-2018-14847 — MikroTik Router OS Directory Traversal Vulnerability

CISA KEVExploited: confirmedMikroTik

MikroTik RouterOS through 6.42 allows unauthenticated remote attackers to read arbitrary files and remote authenticated attackers to write arbitrary files due to a directory traversal vulnerability in the WinBox interface.

Vulnerability details