Teltonika RUT router 操作系统命令注入漏洞

Teltonika RUT9XX and Teltonika RUT950 are both LET router products from Teltonika Lithuania. An operating system command injection vulnerability exists in Teltonika RUT router versions 00.07.00 through 00.07.03, which stems from the inclusion of an operating system OS command injection...

Teltonika RUT950 Denial of Service Vulnerability

Teltonika RUT950 is a LET router product from Teltonika Lithuania. A security vulnerability exists in Teltonika RTU950 version R31.04.89. An attacker can exploit the vulnerability to cause denial of service memory and free space consumption...

Authentication flaw

An issue was discovered in /cgi-bin/luci on Teltonika RTU9XX e.g., RUT950 R31.04.89 before R00.05.00.5 devices. The authentication functionality is not protected from automated tools used to make login attempts to the application. An anonymous attacker has the ability to make unlimited login...

CVE-2018-19879

CVE-2018-19879 affects Teltonika RTU9XX (e.g., RUT950) devices running firmware before R_*00.05.00.5, with /cgi-bin/luci authentication not protected from automated login attempts. An anonymous attacker can perform unlimited login attempts, enabling potential password cracking of targeted users. ...