← Back

Telesquare

telesquare

25 CVEs • 8 products

Products (8)

Click to collapse
Toggle
Tlr 2005ksh Firmware
tlr-2005ksh_firmware
17 CVEs
Sdt Cs3b1 Firmware
sdt-cs3b1_firmware
6 CVEs
Tlr 2855ks6 Firmware
tlr-2855ks6_firmware
2 CVEs
Sdt Cw3b1 Firmware
sdt-cw3b1_firmware
1 CVE
Sdt Cs3b1
sdt-cs3b1
0 CVEs
Sdt Cw3b1
sdt-cw3b1
0 CVEs
Tlr 2005ksh
tlr-2005ksh
0 CVEs
Tlr 2855ks6
tlr-2855ks6
0 CVEs

CVEs (25)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2017-20224
1Telesquare
1Sdt Cs3b1 Firmware
Apr 14, 2026
Mar 16, 2026
9.3 CRITICAL· v4
9.8 CRITICAL· v3
N/A· v2
Telesquare SKT LTE Router SDT-CS3B1 version 1.2.0 contains an arbitrary file upload vulnerability that allows unauthenticated attackers to upload malicious content by exploiting enabled WebDAV HTTP methods. Attackers can...Show more
Telesquare SKT LTE Router SDT-CS3B1 version 1.2.0 contains an arbitrary file upload vulnerability that allows unauthenticated attackers to upload malicious content by exploiting enabled WebDAV HTTP methods. Attackers can use PUT, DELETE, MKCOL, MOVE, COPY, and PROPPATCH methods to upload executable code, delete files, or manipulate server content for remote code execution or denial of service.Show less
CVE-2017-20223
1Telesquare
1Sdt Cs3b1 Firmware
Apr 14, 2026
Mar 16, 2026
9.3 CRITICAL· v4
9.8 CRITICAL· v3
N/A· v2
Telesquare SKT LTE Router SDT-CS3B1 firmware version 1.2.0 contains an insecure direct object reference vulnerability that allows attackers to bypass authorization and access resources by manipulating user-supplied input...Show more
Telesquare SKT LTE Router SDT-CS3B1 firmware version 1.2.0 contains an insecure direct object reference vulnerability that allows attackers to bypass authorization and access resources by manipulating user-supplied input parameters. Attackers can directly reference objects in the system to retrieve sensitive information and access functionalities without proper access controls.Show less
CVE-2017-20222
1Telesquare
1Sdt Cs3b1 Firmware
Apr 14, 2026
Mar 16, 2026
8.7 HIGH· v4
7.5 HIGH· v3
N/A· v2
Telesquare SKT LTE Router SDT-CS3B1 software version 1.2.0 contains an unauthenticated remote reboot vulnerability that allows attackers to trigger device reboot without authentication. Attackers can send POST requests t...Show more
Telesquare SKT LTE Router SDT-CS3B1 software version 1.2.0 contains an unauthenticated remote reboot vulnerability that allows attackers to trigger device reboot without authentication. Attackers can send POST requests to the lte.cgi endpoint with the Command=Reboot parameter to cause denial of service by forcing the router to restart.Show less
CVE-2017-20221
1Telesquare
1Sdt Cs3b1 Firmware
Apr 14, 2026
Mar 16, 2026
5.3 MEDIUM· v4
3.5 LOW· v3
N/A· v2
Telesquare SKT LTE Router SDT-CS3B1 version 1.2.0 contains a cross-site request forgery vulnerability that allows authenticated attackers to execute arbitrary system commands by exploiting missing request validation. Att...Show more
Telesquare SKT LTE Router SDT-CS3B1 version 1.2.0 contains a cross-site request forgery vulnerability that allows authenticated attackers to execute arbitrary system commands by exploiting missing request validation. Attackers can craft malicious web pages that perform administrative actions when visited by logged-in users, enabling command execution with router privileges.Show less
CVE-2025-9603
1Telesquare
1Tlr 2005ksh Firmware
Apr 29, 2026
Aug 29, 2025
2.1 LOW· v4
9.8 CRITICAL· v3
6.5 MEDIUM· v2
A vulnerability was determined in Telesquare TLR-2005KSH 1.2.4. The affected element is an unknown function of the file /cgi-bin/internet.cgi?Command=lanCfg. Executing manipulation of the argument Hostname can lead to co...Show more
A vulnerability was determined in Telesquare TLR-2005KSH 1.2.4. The affected element is an unknown function of the file /cgi-bin/internet.cgi?Command=lanCfg. Executing manipulation of the argument Hostname can lead to command injection. The attack may be performed from a remote location. The exploit has been publicly disclosed and may be utilized. The vendor was contacted early about this disclosure but did not respond in any way.Show less
CVE-2025-28361
1Telesquare
1Tlr 2005ksh Firmware
Apr 1, 2025
Mar 26, 2025
N/A· v4
7.5 HIGH· v3
N/A· v2
Unauthorized stack overflow vulnerability in Telesquare TLR-2005KSH v.1.1.4 allows a remote attacker to obtain sensitive information via the systemutil.cgi component.
CVE-2025-26011
1Telesquare
1Tlr 2005ksh Firmware
Apr 1, 2025
Mar 26, 2025
N/A· v4
9.8 CRITICAL· v3
N/A· v2
Telesquare TLR-2005KSH 1.1.4 has an unauthorized stack overflow vulnerability when requesting the admin.cgi parameter with setUsernamePassword.
CVE-2025-26010
1Telesquare
1Tlr 2005ksh Firmware
Apr 1, 2025
Mar 26, 2025
N/A· v4
9.8 CRITICAL· v3
N/A· v2
Telesquare TLR-2005KSH 1.1.4 allows unauthorized password modification when requesting the admin.cgi parameter with setUserNamePassword.
CVE-2025-26009
1Telesquare
1Tlr 2005ksh Firmware
Apr 1, 2025
Mar 26, 2025
N/A· v4
7.5 HIGH· v3
N/A· v2
Telesquare TLR-2005KSH 1.1.4 has an Information Disclosure vulnerability when requesting systemutilit.cgi.
CVE-2025-26008
1Telesquare
1Tlr 2005ksh Firmware
Apr 1, 2025
Mar 26, 2025
N/A· v4
9.8 CRITICAL· v3
N/A· v2
In Telesquare TLR-2005KSH 1.1.4, an unauthorized stack overflow vulnerability exists when requesting admin.cgi parameter with setSyncTimeHost.
CVE-2025-26007
1Telesquare
1Tlr 2005ksh Firmware
Apr 1, 2025
Mar 26, 2025
N/A· v4
9.8 CRITICAL· v3
N/A· v2
Telesquare TLR-2005KSH 1.1.4 has an unauthorized stack overflow vulnerability in the login interface when requesting systemtil.cgi.
CVE-2025-26006
1Telesquare
1Tlr 2005ksh Firmware
Apr 1, 2025
Mar 26, 2025
N/A· v4
9.8 CRITICAL· v3
N/A· v2
Telesquare TLR-2005KSH 1.1.4 has an unauthorized stack overflow vulnerability when requesting the admin.cgi parameter with setAutorest.
CVE-2025-26005
1Telesquare
1Tlr 2005ksh Firmware
Apr 1, 2025
Mar 26, 2025
N/A· v4
9.8 CRITICAL· v3
N/A· v2
Telesquare TLR-2005KSH 1.1.4 is vulnerable to unauthorized stack overflow vulnerability when requesting admin.cgi parameter with setNtp.
CVE-2025-26004
1Telesquare
1Tlr 2005ksh Firmware
Apr 1, 2025
Mar 26, 2025
N/A· v4
9.8 CRITICAL· v3
N/A· v2
Telesquare TLR-2005KSH 1.1.4 is vulnerable to unauthorized stack buffer overflow vulnerability when requesting admin.cgi parameter with setDdns.
CVE-2025-26003
1Telesquare
1Tlr 2005ksh Firmware
Apr 1, 2025
Mar 26, 2025
N/A· v4
9.8 CRITICAL· v3
N/A· v2
Telesquare TLR-2005KSH 1.1.4 is affected by an unauthorized command execution vulnerability when requesting the admin.cgi parameter with setAutorest.
CVE-2025-26002
1Telesquare
1Tlr 2005ksh Firmware
Apr 1, 2025
Mar 26, 2025
N/A· v4
9.8 CRITICAL· v3
N/A· v2
Telesquare TLR-2005KSH 1.1.4 is affected by an unauthorized stack overflow vulnerability when requesting the admin.cgi parameter with setSyncTimeHost.
CVE-2025-26001
1Telesquare
1Tlr 2005ksh Firmware
Apr 1, 2025
Mar 26, 2025
N/A· v4
7.5 HIGH· v3
N/A· v2
Telesquare TLR-2005KSH 1.1.4 is vulnerable to Information Disclosure via the parameter getUserNamePassword.
CVE-2024-29269
1Telesquare
1Tlr 2005ksh Firmware
Jun 17, 2025
Apr 10, 2024
N/A· v4
8.8 HIGH· v3
N/A· v2
An issue discovered in Telesquare TLR-2005Ksh 1.0.0 and 1.1.4 allows attackers to run arbitrary system commands via the Cmd parameter.
CVE-2021-46424
1Telesquare
1Tlr 2005ksh Firmware
Nov 21, 2024
Apr 27, 2022
N/A· v4
9.1 CRITICAL· v3
9.4 HIGH· v2
Telesquare TLR-2005KSH 1.0.0 is affected by an arbitrary file deletion vulnerability that allows a remote attacker to delete any file, even system internal files, via a DELETE request.
CVE-2021-46423
1Telesquare
1Tlr 2005ksh Firmware
Nov 21, 2024
Apr 27, 2022
N/A· v4
5.3 MEDIUM· v3
5.0 MEDIUM· v2
Telesquare TLR-2005KSH 1.0.0 is affected by an unauthenticated file download vulnerability that allows a remote attacker to download a full configuration file.