SB2023051519 - Multiple vulnerabilities in Teltonika Remote Management System

CSH
CYBERSECURITY HELP
Sign In REGISTER

Main Vulnerability Database SB2023051519

SB2023051519 - Multiple vulnerabilities in Teltonika Remote Management System

Published: May 15, 2023

Security Bulletin ID SB2023051519
Severity
High
Patch available
YES
Number of vulnerabilities 5
Exploitation vector Remote access
Highest impact Code execution

Breakdown by Severity

High 40% Medium 40% Low 20%
  • Low
  • Medium
  • High
  • Critical

Description

This security bulletin contains information about 5 secuirty vulnerabilities.


1) Observable Response Discrepancy (CVE-ID: CVE-2023-32346)

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to the observable response discrepancy issue. A remote attacker can create a list of the serial numbers and MAC addresses of all devices cloud-connected to the Remote Management System.


2) Improper Authentication (CVE-ID: CVE-2023-32347)

The vulnerability allows a remote attacker to bypass authentication process.

The vulnerability exists due to an error in when processing authentication requests. A remote attacker can obtain the serial number and MAC address of the device, bypass authentication process and gain unauthorized access to the application.


3) Server-Side Request Forgery (SSRF) (CVE-ID: CVE-2023-32348)

The disclosed vulnerability allows a remote attacker to perform SSRF attacks.

The vulnerability exists due to insufficient validation of user-supplied input in the virtual private network (VPN) hub feature. A remote attacker can send a specially crafted HTTP request and trick the application to initiate requests to arbitrary systems.

Successful exploitation of this vulnerability may allow a remote attacker gain access to sensitive data, located in the local network or send malicious requests to other servers from the vulnerable system.


4) Cross-site scripting (CVE-ID: CVE-2023-2587)

The disclosed vulnerability allows a remote attacker to perform cross-site scripting (XSS) attacks.

The vulnerability exists due to insufficient sanitization of user-supplied data in the main page of the web interface. A remote attacker can trick the victim to follow a specially crafted link and execute arbitrary HTML and script code in user's browser in context of vulnerable website.

Successful exploitation of this vulnerability may allow a remote attacker to steal potentially sensitive information, change appearance of the web page, perform phishing and drive-by-download attacks.


5) Input validation error (CVE-ID: CVE-2023-2588)

The vulnerability allows a remote attacker to execute arbitrary code on the system.

The vulnerability exists due to inclusion of web functionality from an untrusted source. A remote attacker can use a specially crafted webpage that uses a trusted and certified domain to execute arbitrary code on the target system.


Remediation

Install update from vendor's website.

References