Bypass Vulnerability: Mikrotik Routeros Authentication

Note: If you are referring to a different or newer CVE (e.g., from 2024/2025), please check MikroTik’s latest security advisory. As of my last knowledge update, CVE-2023-30799 is the critical authentication bypass affecting WinBox and HTTP.

Add to /ip firewall filter :

Perhaps the most alarming aspect of CVE-2018-14847 is that it exposed a secondary, architectural weakness in older versions of RouterOS. mikrotik routeros authentication bypass vulnerability