Unrated severityNVD Advisory· Published May 22, 2023· Updated Jan 16, 2025

CVE-2023-32350

Description

Versions 00.07.00 through 00.07.03 of Teltonika’s RUT router firmware contain an operating system (OS) command injection vulnerability in a Lua service. An attacker could exploit a parameter in the vulnerable function that calls a user-provided package name by instead providing a package with a malicious name that contains an OS command injection payload.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

Teltonika/RUTllm-create
Range: >=00.07.00, <=00.07.03
Teltonika/RUT model routersv5
Range: 00.07.00

Patches

Vulnerability mechanics

References

www.cisa.gov/news-events/ics-advisories/icsa-23-131-08mitregovernment-resource

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000