CVE-2023-31728

{"id": "CVE-2023-31728", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.0, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 1.0}]}, "published": "2024-02-17T04:15:07.503", "references": [{"url": "https://research.exoticsilicon.com/articles/lte_ethernet_bridge_bug_followup", "tags": ["Third Party Advisory"], "source": "cve@mitre.org"}, {"url": "https://research.exoticsilicon.com/news", "tags": ["Third Party Advisory"], "source": "cve@mitre.org"}, {"url": "https://research.exoticsilicon.com/articles/lte_ethernet_bridge_bug_followup", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://research.exoticsilicon.com/news", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Teltonika RUT240 devices with firmware before 07.04.2, when bridge mode is used, sometimes make SSH and HTTP services available on the IPv6 WAN interface even though the UI shows that they are only available on the LAN interface."}, {"lang": "es", "value": "Los dispositivos Teltonika RUT240 con firmware anterior a 07.04.2, cuando se utiliza el modo puente, a veces hacen que los servicios SSH y HTTP est\u00e9n disponibles en la interfaz WAN IPv6 aunque la interfaz de usuario muestre que solo est\u00e1n disponibles en la interfaz LAN."}], "lastModified": "2025-05-30T15:38:38.977", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:teltonika-networks:rut240_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7CBCF2B4-9A99-4CD5-A029-03112ED0286E", "versionEndExcluding": "00.07.04.2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:teltonika-networks:rut240:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F67C4A2C-8603-4E97-886F-882DDE786B77"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "cve@mitre.org"}