CVE-2023-32346
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2023-32346
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Teltonika’s Remote Management System versions prior to 4.10.0 contain a function that allows users to claim their devices. This function returns information based on whether the serial number of a device has already been claimed, the MAC address of a device has already been claimed, or whether the attempt to claim a device was successful. An attacker could exploit this to create a list of the serial numbers and MAC addresses of all devices cloud-connected to the Remote Management System.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Source: NVD (National Vulnerability Database)
Vulnerability Type
响应差异性信息暴露
Source: NVD (National Vulnerability Database)
Vulnerability Title
Teltonika Remote Management System 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Teltonika Remote Management System是Teltonika公司的一个远程管理系统,用于管理Teltonika产品。 Teltonika Remote Management System 4.10.0之前版本存在安全漏洞。攻击者利用该漏洞可以创建一个列表,其中包含所有云连接到远程管理系统的设备的序列号和 MAC 地址。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Teltonika | Remote Management System | 0 ~ 4.10.0 | - |
II. Public POCs for CVE-2023-32346
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2023-32346
Please Login to view more intelligence information
- https://www.cisa.gov/news-events/ics-advisories/icsa-23-131-08government-resource
- https://nvd.nist.gov/vuln/detail/CVE-2023-32346
Same Patch Batch · Teltonika · 2023-05-22 · 8 CVEs total
| CVE-2023-2586 | 9.0 CRITICAL | Teltonika Remote Management System 授权问题漏洞 |
| CVE-2023-2588 | 8.8 HIGH | Teltonika Remote Management System 安全漏洞 |
| CVE-2023-32347 | 8.1 HIGH | Teltonika Remote Management System 授权问题漏洞 |
| CVE-2023-32350 | 8.0 HIGH | Teltonika RUT router 操作系统命令注入漏洞 |
| CVE-2023-32349 | 8.0 HIGH | Teltonika RUT router 安全漏洞 |
| CVE-2023-2587 | 7.5 HIGH | Teltonika Remote Management System 跨站脚本漏洞 |
| CVE-2023-32348 | 5.8 MEDIUM | Teltonika Remote Management System 代码问题漏洞 |
IV. Related Vulnerabilities
Same product: Remote Management System
Same weakness: CWE-204
- CVE-2026-20195
Cisco Identity Services Engine Observable Response Discrepan - CVE-2026-24468
OpenAEV Vulnerable to Username/Email Enumeration Through Dif - CVE-2026-34264
Information Disclosure vulnerability in SAP Human Capital Ma - CVE-2026-4113
SonicWALL SMA1000 安全漏洞 - CVE-2026-39851
Saleor has a user enumeration vulnerability due to different
V. Comments for CVE-2023-32346
No comments yet