Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Prion
Prionadded 2023/05/22 3:15 p.m.17 views

Information disclosure

Teltonika’s Remote Management System versions prior to 4.10.0 contain a function that allows users to claim their devices. This function returns information based on whether the serial number of a device has already been claimed, the MAC address of a device has already been claimed, or whether th...

5CVSS6.3AI score0.00215EPSS
Exploits0References1Affected Software1
Prion
Prionadded 2023/05/22 3:15 p.m.14 views

Command injection

Teltonika’s Remote Management System versions prior to 4.10.0 use device serial numbers and MAC addresses to identify devices from the user perspective for device claiming and from the device perspective for authentication. If an attacker obtained the serial number and MAC address of a device, th...

7.5CVSS9.6AI score0.00593EPSS
Exploits0References1Affected Software1
CVE
CVEadded 2023/05/22 2:58 p.m.40 views

CVE-2023-32347

Teltonika RMS and related RUT devices are affected by multiple CVEs (CVE-2023-32346/32347/32348/32349/32350, and 32358 in some sources) affecting authentication, device claiming, SSRF, remote code execution, and OS command injection. Affected: RMS versions prior to 4.10.0 (and 4.14.0 for CVE-2023...

9.8CVSS9.5AI score0.00593EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2023/05/22 2:45 p.m.12 views

CVE-2023-32346

Teltonika’s Remote Management System versions prior to 4.10.0 contain a function that allows users to claim their devices. This function returns information based on whether the serial number of a device has already been claimed, the MAC address of a device has already been claimed, or whether th...

5.3CVSS5.5AI score0.00215EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2023/05/22 12:0 a.m.3 views

PT-2023-23262 · Snap One · Snap One Ovrc

Name of the Vulnerable Software and Affected Versions: Snap One OvrC affected versions not specified Description: The issue concerns Snap One OvrC cloud servers, where an attacker can exploit a route to bypass requirements and claim devices outright. No information is provided about the estimated...

10CVSS9.5AI score0.00012EPSS
Exploits0References5
Positive Technologies
Positive Technologiesadded 2023/05/22 12:0 a.m.2 views

PT-2023-23739 · Teltonika · Sygate Remote Management

Name of the Vulnerable Software and Affected Versions: Teltonika’s Remote Management System versions prior to 4.10.0 Description: The issue concerns a function in the Remote Management System that allows users to claim devices, returning information based on whether a device's serial number or MA...

5.3CVSS5.2AI score0.00215EPSS
Exploits0References4
ICS
ICSadded 2023/05/16 6:0 a.m.57 views

Snap One OvrC Cloud (Update A)

1. EXECUTIVE SUMMARY CVSS v3 8.6 ATTENTION: Exploitable remotely/low attack complexity Vendor: Snap One Equipment: OvrC Cloud, OvrC Pro Devices Vulnerabilities: Improper Input Validation, Observable Response Discrepancy, Improper Access Control, Cleartext Transmission of Sensitive Information,...

10CVSS8.6AI score0.0018EPSS
Exploits0References10
Rows per page
Query Builder