3 matches found
CVE-2023-2588
Teltonika’s Remote Management System versions prior to 4.10.0 have a feature allowing users to access managed devices’ local secure shell SSH/web management services over the cloud proxy. A user can request a web proxy and obtain a URL in the Remote Management System cloud subdomain. This URL cou...
CVE-2023-2588
CVE-2023-2588 affects Teltonika’s Remote Management System (RMS) prior to 4.10.0. The RMS web proxy feature can be requested to obtain a URL in the RMS cloud subdomain, which may be shared without authenticating to RMS. An attacker could construct a malicious webpage using a trusted domain and tr...
Teltonika Remote Management System and RUT Model Routers
1. EXECUTIVE SUMMARY CVSS v3 9.0 ATTENTION: Exploitable remotely/low attack complexity Vendor: Teltonika Equipment: Remote Management System and RUT model routers Vulnerabilities: Observable Response Discrepancy, Improper Authentication, Server-Side Request Forgery, Cross-site Scripting, Inclusio...