← Back

Sdt Cs3b1 Firmware

sdt-cs3b1_firmware

Vendor: Telesquare • 6 CVEs

CVEs (6)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2017-20224
1Telesquare
1Sdt Cs3b1 Firmware
Apr 14, 2026
Mar 16, 2026
9.3 CRITICAL· v4
9.8 CRITICAL· v3
N/A· v2
Telesquare SKT LTE Router SDT-CS3B1 version 1.2.0 contains an arbitrary file upload vulnerability that allows unauthenticated attackers to upload malicious content by exploiting enabled WebDAV HTTP methods. Attackers can...Show more
Telesquare SKT LTE Router SDT-CS3B1 version 1.2.0 contains an arbitrary file upload vulnerability that allows unauthenticated attackers to upload malicious content by exploiting enabled WebDAV HTTP methods. Attackers can use PUT, DELETE, MKCOL, MOVE, COPY, and PROPPATCH methods to upload executable code, delete files, or manipulate server content for remote code execution or denial of service.Show less
CVE-2017-20223
1Telesquare
1Sdt Cs3b1 Firmware
Apr 14, 2026
Mar 16, 2026
9.3 CRITICAL· v4
9.8 CRITICAL· v3
N/A· v2
Telesquare SKT LTE Router SDT-CS3B1 firmware version 1.2.0 contains an insecure direct object reference vulnerability that allows attackers to bypass authorization and access resources by manipulating user-supplied input...Show more
Telesquare SKT LTE Router SDT-CS3B1 firmware version 1.2.0 contains an insecure direct object reference vulnerability that allows attackers to bypass authorization and access resources by manipulating user-supplied input parameters. Attackers can directly reference objects in the system to retrieve sensitive information and access functionalities without proper access controls.Show less
CVE-2017-20222
1Telesquare
1Sdt Cs3b1 Firmware
Apr 14, 2026
Mar 16, 2026
8.7 HIGH· v4
7.5 HIGH· v3
N/A· v2
Telesquare SKT LTE Router SDT-CS3B1 software version 1.2.0 contains an unauthenticated remote reboot vulnerability that allows attackers to trigger device reboot without authentication. Attackers can send POST requests t...Show more
Telesquare SKT LTE Router SDT-CS3B1 software version 1.2.0 contains an unauthenticated remote reboot vulnerability that allows attackers to trigger device reboot without authentication. Attackers can send POST requests to the lte.cgi endpoint with the Command=Reboot parameter to cause denial of service by forcing the router to restart.Show less
CVE-2017-20221
1Telesquare
1Sdt Cs3b1 Firmware
Apr 14, 2026
Mar 16, 2026
5.3 MEDIUM· v4
3.5 LOW· v3
N/A· v2
Telesquare SKT LTE Router SDT-CS3B1 version 1.2.0 contains a cross-site request forgery vulnerability that allows authenticated attackers to execute arbitrary system commands by exploiting missing request validation. Att...Show more
Telesquare SKT LTE Router SDT-CS3B1 version 1.2.0 contains a cross-site request forgery vulnerability that allows authenticated attackers to execute arbitrary system commands by exploiting missing request validation. Attackers can craft malicious web pages that perform administrative actions when visited by logged-in users, enabling command execution with router privileges.Show less
CVE-2021-46422
1Telesquare
1Sdt Cs3b1 Firmware
Nov 21, 2024
Apr 27, 2022
N/A· v4
9.8 CRITICAL· v3
10.0 HIGH· v2
Telesquare SDT-CW3B1 1.1.0 is affected by an OS command injection vulnerability that allows a remote attacker to execute OS commands without any authentication.
CVE-2018-12526
1Telesquare
2Sdt Cs3b1 Firmware
Sdt Cw3b1 Firmware
Nov 21, 2024
Jun 21, 2018
N/A· v4
9.8 CRITICAL· v3
10.0 HIGH· v2
Telesquare SDT-CS3B1 and SDT-CW3B1 devices through 1.2.0 have a default factory account. Remote attackers can obtain access to the device via TELNET using a hardcoded account.