cvedb.io
CVE-2025-4687
UNKNOWN · CVSS n/a
EPSS exploitation probability: 0%
Published 2025-05-29T09:15:27.413 · Last modified 2026-06-17T09:33:47.540

Summary

In Teltonika Networks Remote Management System (RMS), it is possible to perform account pre-hijacking by misusing the invite functionality. If a victim has a pending invite and registers to the platform directly, they are added to the attackers company without their knowledge. The victims account and their company can then be managed by the attacker.This issue affects RMS: before 5.7.

Does this affect you?

Add your gear to cvedb and we'll alert you only when a vendor you run ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.