CVE-2026-8914
Command injection in Profile change function
CVSS Score
0.0
EPSS Score
0.1%
EPSS Percentile
29th
In Teltonika Networks RUTOS devices, running versions 7.22 through 7.23.2 and TSWOS devices running versions 1.09 through 1.09.1, due to unsafe calls to an eval function in rpc-profile, a vulnerability exists where a lower privileged user could perform command injection as the root user.
| CWE | CWE-95 |
| Vendor | teltonika networks |
| Product | rutos |
| Published | Jun 5, 2026 |
| Last Updated | Jun 5, 2026 |
Stay Ahead of the Next One
Get instant alerts for teltonika networks rutos
Be the first to know when new unknown vulnerabilities affecting teltonika networks rutos are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
Affected Versions
Teltonika Networks / RUTOS
7.22 โค 7.23.2
Teltonika Networks / TSWOS
1.09 โค 1.09.1