Vulnerability detail
Enriched intelligence for a single CVE
Critical
CVE-2018-14847
PUBLISHEDMikroTik RouterOS through 6.42 allows unauthenticated remote attackers to read arbitrary files and remote authenticated attackers to write...
- Vendor
- MikroTik
- Product
- RouterOS
- Published
- Aug 02, 2018
- EPSS
- —
Description
MikroTik RouterOS through 6.42 allows unauthenticated remote attackers to read arbitrary files and remote authenticated attackers to write arbitrary files due to a directory traversal vulnerability in the WinBox interface.
CVSS scores
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
AV:N/AC:L/Au:N/C:P/I:P/A:N
Exploitation status
Exploited in the wild
Recorded 2021-12-01 00:00:00 UTC · Source
SSVC decision points
- Exploitation
- active
- Automatable
- Yes
- Technical impact
- total
References
- https://www.exploit-db.com/exploits/45578/
- https://github.com/BigNerd95/WinboxExploit
- https://github.com/tenable/routeros/blob/master/bug_hunting_in_routeros_derbycon_2018.pdf
- https://github.com/BasuCert/WinboxPoC
- https://github.com/tenable/routeros/tree/master/poc/cve_2018_14847
- https://n0p.me/winbox-bug-dissection/
- https://github.com/tenable/routeros/tree/master/poc/bytheway
- https://mikrotik.com/supportsec/winbox-vulnerability
Known exploited vulnerability sources
Catalogues that list this CVE as a known exploited vulnerability.
| Source | Added |
|---|---|
| CISA | Dec 01, 2021 |
| CISA | Dec 01, 2021 |
Potential proof of concepts
These PoCs are unverified and could contain malware. Use at your own risk.
github · Created 2025-04-16 18:37:08 UTC · 0 stars
This is a proof of concept of the critical WinBox vulnerability (CVE-2018-14847) which allows for arbitrary file read of plain text passwords. The vulnerability has long since been fixed, so this project has ended and will not be supported or updated anymore. You can fork it and update it yourself instead.
github · Created 2024-04-22 22:33:25 UTC · 2 stars
A PoC exploit for CVE-2018-14847 - MikroTik WinBox File Read
github · Created 2022-10-31 06:38:11 UTC · 4 stars
By the Way is an exploit that enables a root shell on Mikrotik devices running RouterOS versions:
github · Created 2020-04-29 01:40:33 UTC · 1 stars
github · Created 2018-12-15 10:38:26 UTC · 27 stars
MikroTik RouterOS Winbox未经身份验证的任意文件读/写漏洞
Timeline
-
CVE ID Reserved
-
CVE Published to Public
-
Added to KEVIntel
-
Added to KEVIntel