Vulnerability CVE-2017-8116
Published: 2017-07-03

Description:
The management interface for the Teltonika RUT9XX routers (aka LuCI) with firmware 00.03.265 and earlier allows remote attackers to execute arbitrary commands with root privileges via shell metacharacters in the username parameter in a login request.

Type:

CWE-78

 (Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') )

CVSS2 => (AV:N/AC:L/Au:N/C:C/I:C/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
10/10
10/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
Complete
Complete
Complete
Affected software
Teltonika -> Rut955 firmware 
Teltonika -> Rut905 firmware 
Teltonika -> Rut950 firmware 
Teltonika -> Rut900 firmware 

 References:
https://github.com/nettitude/metasploit-modules/blob/master/teltonika_add_user.rb
https://github.com/nettitude/metasploit-modules/blob/master/teltonika_cmd_exec.rb
https://labs.nettitude.com/blog/cve-2017-8116-teltonika-router-unauthenticated-remote-code-execution/
Copyright 2024, cxsecurity.com

 

Back to Top