Vulnerability Details CVE-2023-31728
Teltonika RUT240 devices with firmware before 07.04.2, when bridge mode is used, sometimes make SSH and HTTP services available on the IPv6 WAN interface even though the UI shows that they are only available on the LAN interface.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 3.6%
CVSS Severity
CVSS v3 Score 7.0
References
Products affected by CVE-2023-31728
-
cpe:2.3:h:teltonika-networks:rut240:-
-
cpe:2.3:o:teltonika-networks:rut240_firmware:-
-
cpe:2.3:o:teltonika-networks:rut240_firmware:00.07.00
-
cpe:2.3:o:teltonika-networks:rut240_firmware:00.07.01
-
cpe:2.3:o:teltonika-networks:rut240_firmware:00.07.01.2
-
cpe:2.3:o:teltonika-networks:rut240_firmware:00.07.01.4
-
cpe:2.3:o:teltonika-networks:rut240_firmware:00.07.02
-
cpe:2.3:o:teltonika-networks:rut240_firmware:00.07.02.1
-
cpe:2.3:o:teltonika-networks:rut240_firmware:00.07.02.2
-
cpe:2.3:o:teltonika-networks:rut240_firmware:00.07.02.4
-
cpe:2.3:o:teltonika-networks:rut240_firmware:00.07.02.5
-
cpe:2.3:o:teltonika-networks:rut240_firmware:00.07.02.6
-
cpe:2.3:o:teltonika-networks:rut240_firmware:00.07.02.7
-
cpe:2.3:o:teltonika-networks:rut240_firmware:00.07.03
-
cpe:2.3:o:teltonika-networks:rut240_firmware:00.07.03.1
-
cpe:2.3:o:teltonika-networks:rut240_firmware:00.07.03.2
-
cpe:2.3:o:teltonika-networks:rut240_firmware:00.07.03.3
-
cpe:2.3:o:teltonika-networks:rut240_firmware:00.07.03.4
-
cpe:2.3:o:teltonika-networks:rut240_firmware:00.07.04
-
cpe:2.3:o:teltonika-networks:rut240_firmware:00.07.04.1