top of page

Products

Casos de Uso

Support

Recursos

Empresa

TELTONIKA NETWORKING DEVICES

Centro De
Seguridad

Cualquier dispositivo conectado a Internet está expuesto a ciberataques. Aquí proporcionamos toda la información sobre cualquier vulnerabilidad de seguridad existente o potencial relacionada con nuestros productos de conectividad.

cURL multiple vulnerabilities patched

13/12/22

Multiple vulnerabilities were remediated as cURL was patched to version 7.86.0 in RutOS 7.3 firmware.

  • Several cURL vulnerabilities were discovered in RUTOS, ranging from LOW to MEDIUM severity

  • CVE-2022-42915 CVE-2022-32221 CVE-2022-35252

  • POST following PUT confusion; HTTP proxy double-free; control code in cookie denial of service

Linux Kernel Wi-Fi vulnerabilities remediated with 7.3

5/10/22

Vulnerabilities are patched with our RutOS 7.3 firmware, as such it is advised to update your firmware to the latest one available.

  • 5 WiFi CVE's discovered in total:

  • CVE-2022-41674 CVE-2022-42719 CVE-2022-42720 CVE-2022-42721 CVE-2022-42722

  • Vulnerabilities stem from holes triggered by "Beacon Frames".

  • Any Linux device vulnerable to these exploits would be susceptible to attacks when scanning for a network if a rogue AP was present.

Title

Descripción

Title and description

  • Página 4

NEWS & ARTICLES

See all news

the-rutx50-5g-router-now-red-certified-article-banner-840xAuto.jpg

2025-06-11 08:55

Visión General de la Seguridad de Nuestro Sistema de Gestión Remota

711530-5g-security-840xAuto.jpg

2024-08-22 13:00

Nos unimos al programa CVE para mejorar la seguridad de las soluciones de red

rms-security-banner-840xAuto.jpg

2024-03-06 15:00

SECURITY VULNERABILITIES IN RMS AND RUT SERIES DEVICES

Secure Software Development Lifecycle

Ensuring the security of our products and services is a top priority at Teltonika. They are designed, developed, and rigorously tested with security and privacy in mind throughout the software development lifecycle of each release.

In addition to performing vulnerability management, reviewing vulnerability reports, routine monitoring of new vulnerabilities, and handling vulnerability remediation, Teltonika’s core Secure Software Development Lifecycle (SSDL) consists of the following phases:

Training

As a pre-requirement of this lifecycle, Teltonika’s security team drafts training materials and developer test on a yearly basis.

Requirements

Baseline security and privacy requirements for the upcoming release are drafted and communicated internally.

Design

Software design reviews are conducted with the goals of understanding the upcoming release, drafting.

Implementation

Static code scanning tools are maintained and code is reviewed.

Verification

Comprehensive fuzzing, penetration, and final security tests are performed.

Release

Documents are finalised, archived, and taken into account for the following cycle.

Everything begins with security.

"In an ever-increasing complexity of globally connected digital devices, ensuring cybersecurity is no longer an optional task. The first step should always be keeping your devices up-to date."

fixed-aspect-ratio-spacer-variants.webp
bottom of page