Description
In Teltonika Networks RUTOS devices, running versions 7.22 through 7.23.2 and TSWOS devices running versions 1.09 through 1.09.1, due to unsafe calls to an eval function in rpc-profile, a vulnerability exists where a lower privileged user could perform command injection as the root user.
Published: 2026-06-05
Score: 8.4 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability arises from unsafe eval calls in the rpc-profile component, allowing a lower privileged user to construct and execute arbitrary shell commands with root privileges. This flaw is a classic command injection problem categorized as CWE‑95, giving an attacker complete control over the system once exploited.

Affected Systems

Teltonika Networks RUTOS firmware versions 7.22 through 7.23.2 and TSWOS firmware versions 1.09 through 1.09.1 are affected. These devices run the rpc-profile service which is accessible to users with limited rights.

Risk and Exploitability

The CVSS score of 8.4 reflects a high impact and considerable exploitation difficulty. No EPSS score is available, and the vulnerability is not listed in KEV. The attack vector is inferred to be local or remote through the rpc‑profile API, requiring the attacker to have a user account with lower privileges but the ability to invoke rpc-profile calls. Successful exploitation yields full root access, compromising confidentiality, integrity and availability of the device.

Generated by OpenCVE AI on June 5, 2026 at 11:26 UTC.

Remediation

Vendor Solution

Update to RUTOS 7.23.3 or later.

OpenCVE Recommended Actions

  • Apply the vendor‑provided firmware upgrade to RUTOS 7.23.3 or later and TSWOS 1.10 or later.
  • Restrict non‑admin users from accessing rpc‑profile functions and enforce strict role‑based access control.
  • Enable detailed logging for rpc‑profile command execution and monitor logs for abnormal activity.

Generated by OpenCVE AI on June 5, 2026 at 11:26 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 05 Jun 2026 21:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Fri, 05 Jun 2026 10:45:00 +0000

Type Values Removed Values Added
Description In Teltonika Networks RUTOS devices, running versions 7.22 through 7.23.2 and TSWOS devices running versions 1.09 through 1.09.1, due to unsafe calls to an eval function in rpc-profile, a vulnerability exists where a lower privileged user could perform command injection as the root user.
Title Command injection in Profile change function
Weaknesses CWE-95
References
Metrics cvssV4_0

{'score': 8.4, 'vector': 'CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N'}

Subscriptions

No data.

cve-icon MITRE

Status: PUBLISHED

Assigner: tlt_net

Published:

Updated: 2026-06-05T20:21:59.678Z

Reserved: 2026-05-19T05:45:27.190Z

Link: CVE-2026-8914

cve-icon Vulnrichment

Updated: 2026-06-05T20:21:54.730Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-06-05T11:16:37.043

Modified: 2026-06-05T14:59:51.620

Link: CVE-2026-8914

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-05T11:30:39Z

Weaknesses