Security researchers from VulnCheck and the MikroTik Security Team recommend the following critical steps to secure your hardware: MikroTik · Security
An attacker sends a specially crafted LOGIN_REQUEST packet to port 8291 (WinBox) of the target MikroTik router. No credentials are provided. Instead, the packet contains a malformed username field with a predetermined length (e.g., 256 bytes) that triggers a stack-based buffer overflow in the session_manager process. mikrotik 64710 exploit
Ensure you are running the latest stable or long-term version beyond 6.47.10 or 6.48. mikrotik 64710 exploit