Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
teltonika vulnerabilities and exploits
(subscribe to this query)
3.5
CVSSv2
CVE-2020-5769
Insufficient output sanitization in Teltonika firmware TRB2_R_00.02.02 allows a remote, authenticated malicious user to conduct persistent cross-site scripting (XSS) attacks by injecting malicious client-side code into the 'URL/ Host / Connection' form in the 'DATA...
Teltonika-networks Gateway Trb245 Firmware Trb2 R 00.02.02
6.8
CVSSv2
CVE-2018-19878
An issue exists on Teltonika RTU950 R_31.04.89 devices. The application allows a user to login without limitation. For every successful login request, the application saves a session. A user can re-login without logging out, causing the application to store the session in memory....
Teltonika Rut950 Firmware R 31.04.89
5
CVSSv2
CVE-2018-19879
An issue exists in /cgi-bin/luci on Teltonika RTU9XX (e.g., RUT950) R_31.04.89 before R_00.05.00.5 devices. The authentication functionality is not protected from automated tools used to make login attempts to the application. An anonymous attacker has the ability to make unlimit...
Teltonika Rut950 Firmware R 31.04.89
10
CVSSv2
CVE-2018-17532
Teltonika RUT9XX routers with firmware prior to 00.04.233 are prone to multiple unauthenticated OS command injection vulnerabilities in autologin.cgi and hotspotlogin.cgi due to insufficient user input sanitization. This allows remote malicious users to execute arbitrary commands...
Teltonika Rut900 Firmware
Teltonika Rut950 Firmware
Teltonika Rut955 Firmware
4.3
CVSSv2
CVE-2018-17533
Teltonika RUT9XX routers with firmware prior to 00.05.01.1 are prone to cross-site scripting vulnerabilities in hotspotlogin.cgi due to insufficient user input sanitization.
Teltonika Rut900 Firmware
Teltonika Rut950 Firmware
Teltonika Rut955 Firmware
7.2
CVSSv2
CVE-2018-17534
Teltonika RUT9XX routers with firmware prior to 00.04.233 provide a root terminal on a serial interface without proper access control. This allows attackers with physical access to execute arbitrary commands with root privileges.
Teltonika Rut900 Firmware
Teltonika Rut950 Firmware
Teltonika Rut955 Firmware
10
CVSSv2
CVE-2017-8116
The management interface for the Teltonika RUT9XX routers (aka LuCI) with firmware 00.03.265 and previous versions allows remote malicious users to execute arbitrary commands with root privileges via shell metacharacters in the username parameter in a login request.
Teltonika Rut900 Firmware
Teltonika Rut905 Firmware
Teltonika Rut950 Firmware
Teltonika Rut955 Firmware
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3