Home/MAC Lookup/Vendors/Teltonika (Teltonika IoT Group: UAB Teltonika Telematics + Teltonika Networks UAB)
MAC address vendor

Teltonika — 6 prefixes (MA-L), Lithuania

[ 01 ] — Context

About this vendor.

Updated  ·  Confidence: High

Teltonika holds six MA-L (24-bit, ~16.7M addresses each) OUI blocks split across two distinct legal entities of the Lithuanian Teltonika IoT Group. "UAB Teltonika Telematics" (Saltoniškiu str. 9B-1, Vilnius) registered 38:8A:21, 7C:D9:F4, and 6C:AF:AB; "Teltonika Networks UAB" (K. Baršausko st. 66, Kaunas) registered B4:1C:AF and 20:97:27; the oldest-looking record, 00:1E:42, is registered simply as "Teltonika" at a Vilnius Zirmunu address and is most likely a legacy registration predating the corporate split. A Teltonika OUI on a network almost always indicates an industrial or commercial device rather than a consumer gadget. Teltonika Networks builds industrial cellular routers (4G LTE and 5G — RUT, RUTX, RUTM, RUTC, and TRB series), IoT/M2M gateways with RS232/RS485/Modbus bridging, and managed industrial switches, all running RutOS, an in-house OpenWrt-based Linux firmware, and manageable at scale through the proprietary Remote Management System (RMS) cloud. These devices commonly serve as WAN uplinks or protocol bridges into otherwise isolated OT/SCADA, fleet, utility, and smart-city networks, which makes their security posture material: a 2023 cluster of CVEs (CVE-2023-32346 through -32350 and CVE-2023-2586 through -2588), documented by CISA advisory ICSA-23-131-08 and Claroty's Team82, covered RMS device takeover, OS command injection in firmware, stored XSS account takeover, and metadata exposure — one flaw rated CVSS v3 10.0. Teltonika issued patches and has since joined the CVE programme. As always with OUI data, the critical caveat is that IEEE publishes no registration dates; any "date registered" seen on third-party lookup tools (e.g. "2007" for 00:1E:42 or "2023" for 20:97:27) is a database artifact, not an IEEE fact.

IEEE assignment
6 prefixes across two entities — "Teltonika" / "UAB Teltonika Telematics" / "Teltonika Networks UAB" [Confirmed] — IEEE MA-L (enrichment/registries/oui.csv)
Registry / block size
MA-L (24-bit OUI) for all six assignments; ~16.7M addresses each. No MA-M or MA-S blocks found (no matches in mam.csv or oui36.csv) [Confirmed] — IEEE MA-L (enrichment/registries/oui.csv). NOTE: IEEE's public OUI data publishes NO assignment/registration date (oui.csv columns are only Registry, Assignment, Organization Name, Organization Address); any "date registered" on third-party tools is a database artifact, not an IEEE fact.
HQ / country
Lithuania (LT). Registry addresses: Saltoniškiu str. 9B-1, Vilnius LT-08105 (Telematics); K. Baršausko st. 66, Kaunas LT-51436 (Networks); Zirmunu 27, Vilnius LT-09105 (legacy "Teltonika") [Confirmed] — IEEE MA-L (enrichment/registries/oui.csv), https://www.teltonika-iot-group.com/who-we-are
Company status
active [Confirmed] — https://www.teltonika-networks.com/, https://www.teltonika-iot-group.com/who-we-are
Founded
1998 (Teltonika IoT Group parent; Teltonika Networks is the networking-hardware subsidiary) [Confirmed] — https://www.teltonika-iot-group.com/company-history, https://en.wikipedia.org/wiki/Teltonika
Device types
industrial cellular routers (4G LTE / 5G — RUT, RUTX, RUTM, RUTC, TRB series), IoT/M2M gateways (RS232/RS485/Modbus, LTE-M/NB-IoT), managed industrial switches (PoE+, SFP fiber), RMS cloud management platform [Confirmed] — https://www.teltonika-networks.com/products/gateways, https://www.teltonika-networks.com/
OS / firmware
RutOS — an OpenWrt-based Linux distribution developed and maintained in-house by Teltonika Networks [Confirmed] — https://www.teltonika-networks.com/
Verified registry prefixes (all MA-L)
00:1E:42 ("Teltonika", Vilnius — legacy), 38:8A:21 / 7C:D9:F4 / 6C:AF:AB (UAB Teltonika Telematics, Vilnius), B4:1C:AF (UAB Teltonika Networks, Kaunas), 20:97:27 (Teltonika Networks UAB, Kaunas) [Confirmed] — IEEE MA-L (enrichment/registries/oui.csv)
Corporate structure note
two distinct registrant entities — "Teltonika Telematics" (Vilnius) and "Teltonika Networks" (Kaunas) — both under the Teltonika IoT Group; 00:1E:42 ("Teltonika", Vilnius Zirmunu) appears to be a legacy registration predating the split [Confirmed assignment; legacy inference from address/name divergence] — IEEE MA-L (enrichment/registries/oui.csv)
Security note
2023 CVE cluster (CVE-2023-32346/-32347/-32348/-32349/-32350, CVE-2023-2586/-2587/-2588) — RMS unregistered-device takeover, firmware OS command injection (UBUS/tcpdump), stored XSS account takeover, VPN misconfig exposing AWS metadata, serial/MAC info disclosure; one flaw CVSS v3 10.0. Patched in RMS + RUT firmware; Teltonika has since joined the CVE programme [Confirmed] — https://www.cisa.gov/news-events/ics-advisories/icsa-23-131-08, https://claroty.com/team82/research/triple-threat-breaking-teltonika-routers-three-ways, https://www.securityweek.com/teltonika-vulnerabilities-could-expose-thousands-of-industrial-orgs-to-remote-attacks/
Network context
a Teltonika OUI on a network strongly indicates an industrial/commercial cellular router or IoT gateway (fleet, utilities, industrial automation, smart city), not a consumer device; devices typically act as WAN uplinks or protocol bridges and are often fleet-managed via RMS [Confirmed] — https://www.teltonika-networks.com/, https://claroty.com/team82/research/triple-threat-breaking-teltonika-routers-three-ways
Analyst note
OUI reliably flags genuine Teltonika industrial hardware; treat the presence of one as an OT/cellular-gateway asset signal and review RMS exposure and 2023-CVE patch status, especially where the router bridges into isolated industrial networks.
[ 02 ] — OUI prefixes

Assignments by IEEE.

6
// MA-L prefixes6
  1. 00:1E:42MA-L
  2. 38:8A:21MA-L
  3. 7C:D9:F4MA-L
  4. 6C:AF:ABMA-L
  5. B4:1C:AFMA-L
  6. 20:97:27MA-L