What is CVE-2018-17532?

CVE-2018-17532 is a vulnerability in N/a. Published 2018-10-15.

Is CVE-2018-17532 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2018-17532

Teltonika RUT9XX routers with firmware before 00.04.233 are prone to multiple unauthenticated OS command injection vulnerabilities in autologin.cgi and hotspotlogin.cgi due to insufficient user input sanitization. This allows remote attack…

EPSS: 0.771 (99.0th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

ARPSyndicate/cve-scores

References

20181011 [SBA-ADV-20180319-01] CVE-2018-17532: Teltonika RUT9XX Unauthenticated OS Command Injection (mailing-list, x_refsource_FULLDISC)
packetstormsecurity.com/files/149777/Teltonika-RUT9XX-Unauthenticated-OS-Comman… (x_refsource_MISC)
github.com/sbaresearch/advisories/tree/public/2018/SBA-ADV-20180319-01_Teltonik… (x_refsource_MISC)

Frequently asked questions

What is CVE-2018-17532?: CVE-2018-17532 is a vulnerability in N/a. Published 2018-10-15.
Is CVE-2018-17532 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.