Cross site request forgery (csrf)

2017-07-0316:29:00

PRIOn knowledge base

www.prio-n.com

9.7 High

AI Score

Confidence

High

0.013 Low

EPSS

Percentile

86.0%

JSON

The management interface for the Teltonika RUT9XX routers (aka LuCI) with firmware 00.03.265 and earlier allows remote attackers to execute arbitrary commands with root privileges via shell metacharacters in the username parameter in a login request.

CPENameOperatorVersion
rut900_firmwarele00.03.265
rut905_firmwarele00.03.265
rut950_firmwarele00.03.265
rut955_firmwarele00.03.265

Name	Operator	Version
rut900_firmware	le	00.03.265
rut905_firmware	le	00.03.265
rut950_firmware	le	00.03.265
rut955_firmware	le	00.03.265

References

github.com/nettitude/metasploit-modules/blob/master/teltonika_add_user.rb

github.com/nettitude/metasploit-modules/blob/master/teltonika_cmd_exec.rb

labs.nettitude.com/blog/cve-2017-8116-teltonika-router-unauthenticated-remote-code-execution/