7 matches found
EUVD-2023-36593
Malicious code in bioql PyPI...
EUVD-2023-36594
Malicious code in bioql PyPI...
CVE-2023-32349
Version 00.07.03.4 and prior of Teltonika’s RUT router firmware contain a packet dump utility that contains proper validation for filter parameters. However, variables for validation checks are stored in an external configuration file. An authenticated attacker could use an exposed UCI...
CVE-2023-32350
Versions 00.07.00 through 00.07.03 of Teltonika’s RUT router firmware contain an operating system OS command injection vulnerability in a Lua service. An attacker could exploit a parameter in the vulnerable function that calls a user-provided package name by instead providing a package with a...
Teltonika RUT950 Denial of Service Vulnerability
Teltonika RUT950 is a LET router product from Teltonika Lithuania. A security vulnerability exists in Teltonika RTU950 version R31.04.89. An attacker can exploit the vulnerability to cause denial of service memory and free space consumption...
Teltonika RUT9XX Arbitrary Command Execution Vulnerability
Teltonika RUT9XX routers also known as LuCI is a router product from the Lithuanian company Teltonika. An arbitrary command execution vulnerability exists in Teltonika RUT9XX with firmware version lower than 00.04.233, which is caused by the program's failure to perform proper access control and...
CVE-2017-8116
The management interface for the Teltonika RUT9XX routers aka LuCI with firmware 00.03.265 and earlier allows remote attackers to execute arbitrary commands with root privileges via shell metacharacters in the username parameter in a login request...