CVE-2023-31728

Name of the Vulnerable Software and Affected Versions Teltonika RUT240 versions prior to 07.04.2

Description The issue is related to incorrect access control in the firmware of Teltonika RUT240 devices. When bridge mode is used, SSH and HTTP services may be made available on the IPv6 WAN interface, even though the UI indicates they are only available on the LAN interface. This could allow a remote attacker to bypass existing security restrictions and gain unauthorized access to the IPv6 WAN interface.

Recommendations For versions prior to 07.04.2, update the firmware to version 07.04.2 or later to resolve the issue. As a temporary workaround, consider disabling bridge mode or restricting access to the IPv6 WAN interface until a patch is available. Avoid using the SSH and HTTP services on the IPv6 WAN interface until the issue is resolved.