Vulnerabilities > Teltonika Networks

DATE	CVE	VULNERABILITY TITLE	RISK
2023-05-22	CVE-2023-32349	External Control of System or Configuration Setting vulnerability in Teltonika-Networks products Version 00.07.03.4 and prior of Teltonika’s RUT router firmware contain a packet dump utility that contains proper validation for filter parameters. network low complexity teltonika-networks CWE-15	8.8
2023-05-22	CVE-2023-32350	OS Command Injection vulnerability in Teltonika-Networks products Versions 00.07.00 through 00.07.03 of Teltonika’s RUT router firmware contain an operating system (OS) command injection vulnerability in a Lua service. network low complexity teltonika-networks CWE-78	8.8
2020-10-01	CVE-2020-5789	Path Traversal vulnerability in Teltonika-Networks Trb245 Firmware 00.02.04.03 Relative Path Traversal in Teltonika firmware TRB2_R_00.02.04.3 allows a remote, authenticated attacker to read the contents of arbitrary files on disk. network low complexity teltonika-networks CWE-22	6.5
2020-10-01	CVE-2020-5788	Path Traversal vulnerability in Teltonika-Networks Trb245 Firmware 00.02.04.03 Relative Path Traversal in Teltonika firmware TRB2_R_00.02.04.3 allows a remote, authenticated attacker to delete arbitrary files on disk via the admin/system/admin/certificates/delete action. network low complexity teltonika-networks CWE-22	6.5
2020-10-01	CVE-2020-5787	Path Traversal vulnerability in Teltonika-Networks Trb245 Firmware 00.02.04.03 Relative Path Traversal in Teltonika firmware TRB2_R_00.02.04.3 allows a remote, authenticated attacker to delete arbitrary files on disk via the admin/services/packages/remove action. network low complexity teltonika-networks CWE-22	6.5
2020-10-01	CVE-2020-5786	Cross-Site Request Forgery (CSRF) vulnerability in Teltonika-Networks Trb245 Firmware 00.02.04.03 Cross-site request forgery in Teltonika firmware TRB2_R_00.02.04.3 allows a remote attacker to perform sensitive application actions by tricking legitimate users into clicking a crafted link. network low complexity teltonika-networks CWE-352	8.8
2020-10-01	CVE-2020-5785	Cross-site Scripting vulnerability in Teltonika-Networks Trb245 Firmware 00.02.04.03 Insufficient output sanitization in Teltonika firmware TRB2_R_00.02.04.3 allows an unauthenticated attacker to conduct reflected cross-site scripting via a crafted ‘action’ or ‘pkg_name’ parameter. network low complexity teltonika-networks CWE-79	6.1
2020-10-01	CVE-2020-5784	Server-Side Request Forgery (SSRF) vulnerability in Teltonika-Networks Trb245 Firmware 00.02.04.03 Server-Side Request Forgery in Teltonika firmware TRB2_R_00.02.04.3 allows a low privileged user to cause the application to perform HTTP GET requests to arbitrary URLs. network low complexity teltonika-networks CWE-918	6.5
2020-08-03	CVE-2020-5773	Improper Privilege Management vulnerability in Teltonika-Networks Trb245 Firmware 00.02.04.01 Improper Access Control in Teltonika firmware TRB2_R_00.02.04.01 allows a low privileged user to perform unauthorized write operations. network low complexity teltonika-networks CWE-269	8.8
2020-08-03	CVE-2020-5772	Download of Code Without Integrity Check vulnerability in Teltonika-Networks Trb245 Firmware 00.02.04.01 Improper Input Validation in Teltonika firmware TRB2_R_00.02.04.01 allows a remote, authenticated attacker to gain root privileges by uploading a malicious package file. network high complexity teltonika-networks CWE-494	7.5

Vulnerabilities > Teltonika Networks {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Teltonika Networks"}]}

Vulnerabilities > Teltonika Networks