Vulnerability Details CVE-2017-8116
The management interface for the Teltonika RUT9XX routers (aka LuCI) with firmware 00.03.265 and earlier allows remote attackers to execute arbitrary commands with root privileges via shell metacharacters in the username parameter in a login request.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.075
EPSS Ranking 91.3%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 10.0
References
- https://github.com/nettitude/metasploit-modules/blob/master/teltonika_add_user.rb
- https://github.com/nettitude/metasploit-modules/blob/master/teltonika_cmd_exec.rb
- https://labs.nettitude.com/blog/cve-2017-8116-teltonika-router-unauthenticated-remote-code-execution/
- https://github.com/nettitude/metasploit-modules/blob/master/teltonika_add_user.rb
- https://github.com/nettitude/metasploit-modules/blob/master/teltonika_cmd_exec.rb
- https://labs.nettitude.com/blog/cve-2017-8116-teltonika-router-unauthenticated-remote-code-execution/
Products affected by CVE-2017-8116
-
cpe:2.3:h:teltonika:rut900:-
-
cpe:2.3:h:teltonika:rut905:-
-
cpe:2.3:h:teltonika:rut950:-
-
cpe:2.3:h:teltonika:rut955:-
-
cpe:2.3:o:teltonika:rut900_firmware:00.03.265
-
cpe:2.3:o:teltonika:rut905_firmware:00.03.265
-
cpe:2.3:o:teltonika:rut950_firmware:00.03.265
-
cpe:2.3:o:teltonika:rut955_firmware:00.03.265