Lucene search
K

10 matches found

Tenable Nessus
Tenable Nessus
added 2024/10/17 12:0 a.m.20 views

Teltonika Remote Management System and RUT Model Routers Improper Neutralization of Special Elements Used in an OS Command (CVE-2023-32350)

Versions 00.07.00 through 00.07.03 of Teltonika's RUT router firmware contain an operating system OS command injection vulnerability in a Lua service. An attacker could exploit a parameter in the vulnerable function that calls a user-provided package name by instead providing a package with a...

8.8CVSS8.4AI score0.0148EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/10/17 12:0 a.m.18 views

Teltonika Remote Management System and RUT Model Routers External Control of System or Configuration Setting (CVE-2023-32349)

Version 00.07.03.4 and prior of Teltonika's RUT router firmware contain a packet dump utility that contains proper validation for filter parameters. However, variables for validation checks are stored in an external configuration file. An authenticated attacker could use an exposed UCI...

8.8CVSS8.5AI score0.00978EPSS
Exploits0References2
NVD
NVD
added 2023/05/22 4:15 p.m.21 views

CVE-2023-32350

Versions 00.07.00 through 00.07.03 of Teltonika’s RUT router firmware contain an operating system OS command injection vulnerability in a Lua service. An attacker could exploit a parameter in the vulnerable function that calls a user-provided package name by instead providing a package with a...

8.8CVSS8.5AI score0.0148EPSS
Exploits0References1
Prion
Prion
added 2023/05/22 4:15 p.m.18 views

Command injection

Versions 00.07.00 through 00.07.03 of Teltonika’s RUT router firmware contain an operating system OS command injection vulnerability in a Lua service. An attacker could exploit a parameter in the vulnerable function that calls a user-provided package name by instead providing a package with a...

6.5CVSS9.2AI score0.0148EPSS
Exploits0References1Affected Software18
Prion
Prion
added 2023/05/22 4:15 p.m.26 views

Xxe

Version 00.07.03.4 and prior of Teltonika’s RUT router firmware contain a packet dump utility that contains proper validation for filter parameters. However, variables for validation checks are stored in an external configuration file. An authenticated attacker could use an exposed UCI...

6.5CVSS9AI score0.00978EPSS
Exploits0References1Affected Software18
Cvelist
Cvelist
added 2023/05/22 3:14 p.m.20 views

CVE-2023-32350

Versions 00.07.00 through 00.07.03 of Teltonika’s RUT router firmware contain an operating system OS command injection vulnerability in a Lua service. An attacker could exploit a parameter in the vulnerable function that calls a user-provided package name by instead providing a package with a...

8CVSS9.1AI score0.0148EPSS
Exploits0References1
CVE
CVE
added 2023/05/22 3:14 p.m.88 views

CVE-2023-32350

CVE-2023-32350 affects Teltonika RUT router firmware versions 00.07.00–00.07.03. The vulnerability is an OS command injection in a Lua service where an attacker could replace a user-provided package name with a malicious one to inject commands. The provided documents do not specify a fixed versio...

8.8CVSS8.8AI score0.0148EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/05/22 3:12 p.m.30 views

CVE-2023-32349

Version 00.07.03.4 and prior of Teltonika’s RUT router firmware contain a packet dump utility that contains proper validation for filter parameters. However, variables for validation checks are stored in an external configuration file. An authenticated attacker could use an exposed UCI...

8CVSS8.8AI score0.00978EPSS
Exploits0References1
CVE
CVE
added 2023/05/22 3:12 p.m.74 views

CVE-2023-32349

CVE-2023-32349 affects Teltonika RUT router firmware versions 00.07.03.4 and earlier. The packet dump utility validates filters, but the validation parameters are stored in an external configuration file. An authenticated attacker could misuse an exposed UCI configuration utility to modify these ...

8.8CVSS8.5AI score0.00978EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/05/22 12:0 a.m.4 views

PT-2023-23744 · Teltonika · Teltonika Rut

Name of the Vulnerable Software and Affected Versions: Teltonika RUT router firmware versions 00.07.00 through 00.07.03 Description: The issue is an operating system OS command injection vulnerability in a Lua service. An attacker could exploit a parameter in the vulnerable function that calls a...

8.8CVSS8.5AI score0.0148EPSS
Exploits0References3
Rows per page
Query Builder