CVE-2023-31728

Sažetak

Teltonika RUT240 devices with firmware before 07.04.2, when bridge mode is used, sometimes make SSH and HTTP services available on the IPv6 WAN interface even though the UI shows that they are only available on the LAN interface.

Reference

https://research.exoticsilicon.com/articles/lte_ethernet_bridge_bug_followup
https://research.exoticsilicon.com/news
https://research.exoticsilicon.com/articles/lte_ethernet_bridge_bug_followup
https://research.exoticsilicon.com/news

CVSS

Base:	7.0
Impact:	5.9
Exploitability:	1.0

Pristup

Vektor	Složenost	Autentikacija
LOCAL	HIGH	LOW

Impact

Povjerljivost	Cjelovitost	Dostupnost
HIGH	HIGH	HIGH

CVSS vektor

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Zadnje važnije ažuriranje

30-05-2025 - 15:38

Objavljeno

17-02-2024 - 04:15