@kuz8: his statement is accurate. Dude Agent is part of basic system package. Dude Server has separate package.
Dude Server will allow connections from Dude Client (which make sense because server contains the database and all data..)
Dude Agent allow only connections from Dude Server. Agent works as proxy/relay. It does not store any data. It just forwards probes so your Server don't need direct access to the target network.
Your tests are based on wrong assumptions (connecting client to agent) and you just proved well known fact.
But we haven't yet heard of any large scale attacks using this vulnerability.
We didn't hear of any large scale attack on Winbox vulnerability
(CVE-2018-14847) until 6 month AFTER the fix was released...
We didn't hear of any large scale attack on web service vulnerability
until 18 month AFTER the fix was released...
Large scale attack does not appear overnight. There will be instantly some script-kiddos playing with it and we can expect increased rate of port 8291 scans. To build large attack requires careful preparation and testing. In addition, this may not hit the news that easily, since it does not endanger the RouterOS itself. It give access to internal LAN, where might be unsecured printers, NAS, windows computers etc etc.. you should consider it as a backdoor through firewall to misuse any other vulnerability or unsecured device, which would be normally protected.