Super Admin Elevation Bug Puts 900,000 Mikrotik Devices at Risk
The critical flaw, tracked as CVE-2023-30799, allows remote attackers with an existing admin account to elevate their privileges to “super-admin” via the device’s Winbox or HTTP interface.