CVE-2017-8116

Name of the Vulnerable Software and Affected Versions Teltonika RUT9XX versions 00.03.265 and earlier

Description The issue is related to inadequate access control in the authentication request, allowing a remote attacker to execute arbitrary commands with root privileges by using shell metacharacters in the username parameter in a login request.

Recommendations For versions 00.03.265 and earlier, consider disabling the login functionality via the management interface until a patch is available. Restrict access to the management interface to minimize the risk of exploitation. Avoid using the username parameter in the affected login request until the issue is resolved.