Teltonika Remote Management System
6 CVEs affecting Teltonika Remote Management System. Latest disclosed: 2023-05-22. Critical: 1, High: 3.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2023-2586 | Critical | 9.0 | 2023-05-22 | Teltonika’s Remote Management System versions 4.14.0 is vulnerable to an unauthorized attacker registering previously unregistered devices through the RMS pla… |
CVE-2023-2588 | High | 8.8 | 2023-05-22 | Teltonika’s Remote Management System versions prior to 4.10.0 have a feature allowing users to access managed devices’ local secure shell (SSH)/web management… |
CVE-2023-32347 | High | 8.1 | 2023-05-22 | Teltonika’s Remote Management System versions prior to 4.10.0 use device serial numbers and MAC addresses to identify devices from the user perspective for de… |
CVE-2023-2587 | High | 7.5 | 2023-05-22 | Teltonika’s Remote Management System versions prior to 4.10.0 contain a cross-site scripting (XSS) vulnerability in the main page of the web interface. An att… |
CVE-2023-32348 | Medium | 5.8 | 2023-05-22 | Teltonika’s Remote Management System versions prior to 4.10.0 contain a virtual private network (VPN) hub feature for cross-device communication that uses Ope… |
CVE-2023-32346 | Medium | 5.3 | 2023-05-22 | Teltonika’s Remote Management System versions prior to 4.10.0 contain a function that allows users to claim their devices. This function returns information b… |