Details of VAR-201810-0457

ID

VAR-201810-0457

CVE

CVE-2018-17534

TITLE

Teltonika RUT9XX Vulnerabilities related to authorization, authority, and access control in router firmware

Trust: 0.8

sources: JVNDB: JVNDB-2018-011054

DESCRIPTION

Teltonika RUT9XX routers with firmware before 00.04.233 provide a root terminal on a serial interface without proper access control. This allows attackers with physical access to execute arbitrary commands with root privileges. Teltonika RUT9XX Router firmware contains vulnerabilities related to authorization, authority, and access control.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. TeltonikaRUT9XXrouters (also known as LuCI) is a router product from Teltonika, Lithuania. There is an arbitrary command execution vulnerability in TeltonikaRUT9XX with firmware version lower than 00.04.223

Trust: 2.16

sources: NVD: CVE-2018-17534 // JVNDB: JVNDB-2018-011054 // CNVD: CNVD-2019-18496

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2019-18496

AFFECTED PRODUCTS

vendor:	teltonika	model:	rut900	scope:	lt	version:	00.04.233	Trust: 1.8
vendor:	teltonika	model:	rut950	scope:	lt	version:	00.04.233	Trust: 1.8
vendor:	teltonika	model:	rut955	scope:	lt	version:	00.04.233	Trust: 1.8
vendor:	teltonika	model:	rut9xx	scope:	lt	version:	00.04.233	Trust: 0.6

sources: CNVD: CNVD-2019-18496 // JVNDB: JVNDB-2018-011054 // NVD: CVE-2018-17534

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2018-17534
value:	MEDIUM
Trust: 1.0
NVD:	CVE-2018-17534
value:	MEDIUM
Trust: 0.8
CNVD:	CNVD-2019-18496
value:	HIGH
Trust: 0.6
CNNVD:	CNNVD-201810-712
value:	MEDIUM
Trust: 0.6

nvd@nist.gov:	CVE-2018-17534
severity:	HIGH
baseScore:	7.2
vectorString:	AV:L/AC:L/AU:N/C:C/I:C/A:C
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	3.9
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
CNVD:	CNVD-2019-18496
severity:	HIGH
baseScore:	7.2
vectorString:	AV:L/AC:L/AU:N/C:C/I:C/A:C
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	3.9
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

nvd@nist.gov:	CVE-2018-17534
baseSeverity:	MEDIUM
baseScore:	6.8
vectorString:	CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
attackVector:	PHYSICAL
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	0.9
impactScore:	5.9
version:	3.0
Trust: 1.8

sources: CNVD: CNVD-2019-18496 // JVNDB: JVNDB-2018-011054 // CNNVD: CNNVD-201810-712 // NVD: CVE-2018-17534

PROBLEMTYPE DATA

problemtype:	CWE-287	Trust: 1.0
problemtype:	CWE-264	Trust: 0.8

sources: JVNDB: JVNDB-2018-011054 // NVD: CVE-2018-17534

THREAT TYPE

local

Trust: 0.6

sources: CNNVD: CNNVD-201810-712

TYPE

authorization issue

Trust: 0.6

sources: CNNVD: CNNVD-201810-712

CONFIGURATIONS

sources: JVNDB: JVNDB-2018-011054

PATCH

title:	Top Page	url:	http://teltonika.lt/	Trust: 0.8
title:	Patch of TeltonikaRUT9XX arbitrary command execution vulnerability	url:	https://www.cnvd.org.cn/patchInfo/show/163895	Trust: 0.6
title:	Teltonika RUT9XX Repair measures for router security vulnerabilities	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=85809	Trust: 0.6

sources: CNVD: CNVD-2019-18496 // JVNDB: JVNDB-2018-011054 // CNNVD: CNNVD-201810-712

EXTERNAL IDS

db:	NVD	id:	CVE-2018-17534	Trust: 3.0
db:	PACKETSTORM	id:	149779	Trust: 2.4
db:	JVNDB	id:	JVNDB-2018-011054	Trust: 0.8
db:	CNVD	id:	CNVD-2019-18496	Trust: 0.6
db:	CNNVD	id:	CNNVD-201810-712	Trust: 0.6

sources: CNVD: CNVD-2019-18496 // JVNDB: JVNDB-2018-011054 // CNNVD: CNNVD-201810-712 // NVD: CVE-2018-17534

REFERENCES

url:	http://packetstormsecurity.com/files/149779/teltonika-rut9xx-missing-access-control-to-uart-root-terminal.html	Trust: 2.4
url:	http://seclists.org/fulldisclosure/2018/oct/28	Trust: 1.6
url:	https://github.com/sbaresearch/advisories/tree/public/2018/sba-adv-20180319-02_teltonika_incorrect_access_control	Trust: 1.6
url:	https://nvd.nist.gov/vuln/detail/cve-2018-17534	Trust: 1.4
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2018-17534	Trust: 0.8

sources: CNVD: CNVD-2019-18496 // JVNDB: JVNDB-2018-011054 // CNNVD: CNNVD-201810-712 // NVD: CVE-2018-17534

SOURCES

db:	CNVD	id:	CNVD-2019-18496
db:	JVNDB	id:	JVNDB-2018-011054
db:	CNNVD	id:	CNNVD-201810-712
db:	NVD	id:	CVE-2018-17534

LAST UPDATE DATE

2024-11-23T22:26:08.921000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2019-18496	date:	2019-06-19T00:00:00
db:	JVNDB	id:	JVNDB-2018-011054	date:	2019-01-04T00:00:00
db:	CNNVD	id:	CNNVD-201810-712	date:	2019-10-23T00:00:00
db:	NVD	id:	CVE-2018-17534	date:	2024-11-21T03:54:33.980

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2019-18496	date:	2019-06-19T00:00:00
db:	JVNDB	id:	JVNDB-2018-011054	date:	2019-01-04T00:00:00
db:	CNNVD	id:	CNNVD-201810-712	date:	2018-10-16T00:00:00
db:	NVD	id:	CVE-2018-17534	date:	2018-10-15T19:29:02.070