Rutx10 Firmware

Submit a proposal Propose CVE/GCVE/GHSA reference

Approved changes feed: RSS · Atom

cpe:2.3:o:teltonika-networks:rutx10_firmware:*:*:*:*:*:*:*:*

part: o version: * update: *

VendorTeltonika Networks (6c326e00-df74-5f5f-a8a8-937dad526e20)
ProductRutx10 Firmware (ee8fd7ea-03e0-5a6c-ac37-b477c108edfb)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2023-32350 vulnerable 2026-06-03 14:51:58.312833 Details available
HIGH (8)
Versions 00.07.00 through 00.07.03 of Teltonika’s RUT router firmware contain an operating system (OS) command injection vulnerability in a Lua service. An attacker could exploit a parameter in the vulnerable function that calls a user-provided package name by instead providing a package with a malicious name that contains an OS command injection payload.
Published: 2023-05-22T15:14:57.025Z
Updated: 2025-01-16T21:34:13.864Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2023-32349 vulnerable 2026-06-03 14:51:58.302547 Details available
HIGH (8)
Version 00.07.03.4 and prior of Teltonika’s RUT router firmware contain a packet dump utility that contains proper validation for filter parameters. However, variables for validation checks are stored in an external configuration file. An authenticated attacker could use an exposed UCI configuration utility to change these variables and enable malicious parameters in the dump utility, which could result in arbitrary code execution.
Published: 2023-05-22T15:12:08.610Z
Updated: 2025-01-16T21:34:23.944Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.