Cyber Resilience

CVE-2023-32349

High

Published: 22 May 2023

Published
22 May 2023
Modified
21 November 2024
KEV Added
Patch
CVSS Score v3.1 8.0 CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score 0.0010 27.2th percentile
Risk Priority 16 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2023-32349 is a high-severity External Control of System or Configuration Setting (CWE-15) vulnerability in Teltonika-Networks Rut200 Firmware. Its CVSS base score is 8.0 (High).

Operationally, ranked at the 27.2th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.

EU & UK References

Vulnerability details

Version 00.07.03.4 and prior of Teltonika’s RUT router firmware contain a packet dump utility that contains proper validation for filter parameters. However, variables for validation checks are stored in an external configuration file. An authenticated attacker could use an exposed…

more

UCI configuration utility to change these variables and enable malicious parameters in the dump utility, which could result in arbitrary code execution.

CWE(s)

Related Threats

No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.

Affected Assets

teltonika-networks
rut200 firmware
≤ 00.07.03.4
teltonika-networks
rut240 firmware
≤ 00.07.03.4
teltonika-networks
rut241 firmware
≤ 00.07.03.4
teltonika-networks
rut300 firmware
≤ 00.07.03.4
teltonika-networks
rut360 firmware
≤ 00.07.03.4
teltonika-networks
rut901 firmware
≤ 00.07.03.4
teltonika-networks
rut950 firmware
≤ 00.07.03.4
teltonika-networks
rut951 firmware
≤ 00.07.03.4
teltonika-networks
rut955 firmware
≤ 00.07.03.4
teltonika-networks
rut956 firmware
≤ 00.07.03.4
+8 more product configuration(s) — see NVD for full list

Mitigating Controls

Likely Mitigating Controls AI

Per-CVE control mapping for this CVE has not run yet; the list below is derived from the weakness types (CWEs) cited in the NVD entry.

addresses: CWE-15

The policy and procedures establish internal controls and change management for system configuration settings, reducing the feasibility of external unauthorized modifications.

addresses: CWE-15

Baseline configuration under change control directly prevents unauthorized external modification of system or configuration settings.

addresses: CWE-15

Requires approval, documentation, and security impact review of all configuration changes, directly preventing unauthorized external control of system settings.

addresses: CWE-15

Impact analysis of configuration changes reduces the risk of deploying settings that permit unauthorized external control.

addresses: CWE-15

Restricting changes to system and configuration settings prevents external entities from controlling those settings without approval.

addresses: CWE-15

Establishing, implementing, approving deviations from, and monitoring configuration settings directly prevents external or unauthorized control of system settings.

addresses: CWE-15

The plan defines processes for identifying and managing configuration items, preventing external unauthorized control of system settings.

addresses: CWE-15

Vulnerability scanners directly detect externally controllable or misconfigured settings using standardized checklists.

References