Hello,
today we see unsuall log on our mikrotik CCR’s and we found https://www.bleepingcomputer.com/news/security/mikrotik-patches-zero-day-flaw-under-attack-in-record-time/ , so it seems there is a zero day bug for winbox and it does not have CVE yet,
can i ask mikrotik support explain about this and which versions are safe and which one is not safe?
thanks
That article is 3 months old and describes the previous situation.
I see no increased traffic on the winbox port (which we log).
The fix was released long ago. We don’t assign CVEs, so it doesn’t mean anything.
More info: https://blog.mikrotik.com/security/winbox-vulnerability.html
It is always interesting for me that some admins could find some information from the past and fit it to their “issue” but are unable to check manufacturers forums, announcments or other sources for current information on the “issue”.