CVE-2023-31728

Teltonika RUT240 devices with firmware before 07.04.2, when bridge mode is used, sometimes make SSH and HTTP services available on the IPv6 WAN interface even though the UI shows that they are only available on the LAN interface.

CVSS v3 7.0 HIGH

7.0^/10

CVSS v3 : HIGH

Vector :

Exploitability : 1.0 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity HIGH

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://research.exoticsilicon.com/articles/lte_ethernet_bridge_bug_followup	Third Party Advisory
https://research.exoticsilicon.com/news	Third Party Advisory
https://research.exoticsilicon.com/articles/lte_ethernet_bridge_bug_followup	Third Party Advisory
https://research.exoticsilicon.com/news	Third Party Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:teltonika-networks:rut240_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:teltonika-networks:rut240:-:*:*:*:*:*:*:*

History

30 May 2025, 15:38

Type	Values Removed	Values Added
First Time		Teltonika-networks rut240 Teltonika-networks rut240 Firmware Teltonika-networks
CWE		NVD-CWE-noinfo
References	~~() https://research.exoticsilicon.com/articles/lte_ethernet_bridge_bug_followup -~~	() https://research.exoticsilicon.com/articles/lte_ethernet_bridge_bug_followup - Third Party Advisory
References	~~() https://research.exoticsilicon.com/news -~~	() https://research.exoticsilicon.com/news - Third Party Advisory
CPE		cpe:2.3:o:teltonika-networks:rut240_firmware:::::::: cpe:2.3:h:teltonika-networks:rut240:-:::::::*

Information

Published : 2024-02-17 04:15

Updated : 2025-05-30 15:38

NVD link : CVE-2023-31728

Mitre link : CVE-2023-31728

CVE.ORG link : CVE-2023-31728

JSON object : View

Products Affected

teltonika-networks

rut240
rut240_firmware

CWE

NVD-CWE-noinfo

{"id": "CVE-2023-31728", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.0, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 1.0}]}, "published": "2024-02-17T04:15:07.503", "references": [{"url": "https://research.exoticsilicon.com/articles/lte_ethernet_bridge_bug_followup", "tags": ["Third Party Advisory"], "source": "cve@mitre.org"}, {"url": "https://research.exoticsilicon.com/news", "tags": ["Third Party Advisory"], "source": "cve@mitre.org"}, {"url": "https://research.exoticsilicon.com/articles/lte_ethernet_bridge_bug_followup", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://research.exoticsilicon.com/news", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Teltonika RUT240 devices with firmware before 07.04.2, when bridge mode is used, sometimes make SSH and HTTP services available on the IPv6 WAN interface even though the UI shows that they are only available on the LAN interface."}, {"lang": "es", "value": "Los dispositivos Teltonika RUT240 con firmware anterior a 07.04.2, cuando se utiliza el modo puente, a veces hacen que los servicios SSH y HTTP est\u00e9n disponibles en la interfaz WAN IPv6 aunque la interfaz de usuario muestre que solo est\u00e1n disponibles en la interfaz LAN."}], "lastModified": "2025-05-30T15:38:38.977", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:teltonika-networks:rut240_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7CBCF2B4-9A99-4CD5-A029-03112ED0286E", "versionEndExcluding": "00.07.04.2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:teltonika-networks:rut240:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F67C4A2C-8603-4E97-886F-882DDE786B77"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "cve@mitre.org"}