Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
MikroTik WinBox 3.22 and below stores the user's cleartext password in the settings.cfg.viw configuration file when the Keep Password field is set and no Master Password is set. Keep Password is set by default and, by default Master Password is not set. An attacker with access to the configuration file can extract a username and password to gain access to the router.
CVSS Information
N/A
Vulnerability Type
配置文件中存储口令
Vulnerability Title
MikroTik WinBox 安全漏洞
Vulnerability Description
MikroTik WinBox是拉脱维亚MikroTik公司的一款用于管理MikroTik RouterOS系统的实用程序。 MikroTik WinBox 3.22及之前版本中存在安全漏洞,该漏洞源于程序将用户明文密码存储在settings.cfg.viw配置文件中。攻击者可利用该漏洞提取用户名和密码来访问路由器。
CVSS Information
N/A
Vulnerability Type
N/A