CVE-2024-8256

Vulnerability Description

In Teltonika Networks RUTOS devices, running on versions 7.0 to 7.8 (excluding) and TSWOS devices running on versions 1.0 to 1.3 (excluding), due to incorrect permission handling a vulnerability exists which allows a lower privileged user with default permissions to access critical device resources via the API.

Related Weaknesses (CWE)

CWE-732

References

https://www.deepcove.support/teltonika-responsible-disclosure-proactive-testing-

FAQ

What is CVE-2024-8256?

CVE-2024-8256 is a documented vulnerability. In Teltonika Networks RUTOS devices, running on versions 7.0 to 7.8 (excluding) and TSWOS devices running on versions 1.0 to 1.3 (excluding), due to incorrect permission handling a vulnerability exist...

How severe is CVE-2024-8256?

CVSS scoring is not yet available for CVE-2024-8256. Check NVD for updates.

Is there a patch for CVE-2024-8256?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.