Intrusion Prevention

MikroTik.RouterOS.Arbitrary.File.Read

Description

This indicates an attack attempt against a Arbitrary File Read vulnerability in MikroTik RouterOS.
The vulnerability is due to insufficient sanitizing of user supplied inputs in the application. A remote attacker can exploit this to gain unauthorized access to sensitive information.

Affected Products

MikroTik RouterOS MikroTik RouterOS

Impact

Information Disclosure: Remote attackers can gain sensitive information from vulnerable systems.

Recommended Actions

Upgrade to the latest version, available from the web site.
https://mikrotik.com/download

CVE References

CVE-2018-14847