CVE-2023-31728

Teltonika RUT240 devices with firmware before 07.04.2, when bridge mode is used, sometimes make SSH and HTTP services available on the IPv6 WAN interface even though the UI shows that they are only available on the LAN interface.

CVSS v3 7.0 HIGH

7.0^/10

CVSS v3 : HIGH

Vector :

Exploitability : 1.0 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity HIGH

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://research.exoticsilicon.com/articles/lte_ethernet_bridge_bug_followup	Third Party Advisory
https://research.exoticsilicon.com/news	Third Party Advisory
https://research.exoticsilicon.com/articles/lte_ethernet_bridge_bug_followup	Third Party Advisory
https://research.exoticsilicon.com/news	Third Party Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:teltonika-networks:rut240_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:teltonika-networks:rut240:-:*:*:*:*:*:*:*

History

No history.

Information

Published : 2024-02-17 04:15

Updated : 2025-05-30 15:38

NVD link : CVE-2023-31728

Mitre link : CVE-2023-31728

CVE.ORG link : CVE-2023-31728

JSON object : View

Products Affected

teltonika-networks

rut240_firmware
rut240

CWE

NVD-CWE-noinfo

{"id": "CVE-2023-31728", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.0, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 1.0}]}, "published": "2024-02-17T04:15:07.503", "references": [{"url": "https://research.exoticsilicon.com/articles/lte_ethernet_bridge_bug_followup", "tags": ["Third Party Advisory"], "source": "[email protected]"}, {"url": "https://research.exoticsilicon.com/news", "tags": ["Third Party Advisory"], "source": "[email protected]"}, {"url": "https://research.exoticsilicon.com/articles/lte_ethernet_bridge_bug_followup", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://research.exoticsilicon.com/news", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "[email protected]", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Teltonika RUT240 devices with firmware before 07.04.2, when bridge mode is used, sometimes make SSH and HTTP services available on the IPv6 WAN interface even though the UI shows that they are only available on the LAN interface."}, {"lang": "es", "value": "Los dispositivos Teltonika RUT240 con firmware anterior a 07.04.2, cuando se utiliza el modo puente, a veces hacen que los servicios SSH y HTTP est\u00e9n disponibles en la interfaz WAN IPv6 aunque la interfaz de usuario muestre que solo est\u00e1n disponibles en la interfaz LAN."}], "lastModified": "2025-05-30T15:38:38.977", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:teltonika-networks:rut240_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7CBCF2B4-9A99-4CD5-A029-03112ED0286E", "versionEndExcluding": "00.07.04.2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:teltonika-networks:rut240:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F67C4A2C-8603-4E97-886F-882DDE786B77"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "[email protected]"}