Shodan
Vulnerabilities
Vulnerable Software
Telesquare:  >> Tlr-2005ksh Firmware  Security Vulnerabilities
CVE-2025-9603
A vulnerability was determined in Telesquare TLR-2005KSH 1.2.4. The affected element is an unknown function of the file /cgi-bin/internet.cgi?Command=lanCfg. Executing manipulation of the argument Hostname can lead to command injection. The attack may be performed from a remote location. The exploit has been publicly disclosed and may be utilized. The vendor was contacted early about this disclosure but did not respond in any way.
CVSS Score
6.3
EPSS Score
0.014
Published
2025-08-29
CVE-2025-26010
Telesquare TLR-2005KSH 1.1.4 allows unauthorized password modification when requesting the admin.cgi parameter with setUserNamePassword.
CVSS Score
9.8
EPSS Score
0.001
Published
2025-03-26
CVE-2025-26011
Telesquare TLR-2005KSH 1.1.4 has an unauthorized stack overflow vulnerability when requesting the admin.cgi parameter with setUsernamePassword.
CVSS Score
9.8
EPSS Score
0.001
Published
2025-03-26
CVE-2025-28361
Unauthorized stack overflow vulnerability in Telesquare TLR-2005KSH v.1.1.4 allows a remote attacker to obtain sensitive information via the systemutil.cgi component.
CVSS Score
7.5
EPSS Score
0.001
Published
2025-03-26
CVE-2025-26005
Telesquare TLR-2005KSH 1.1.4 is vulnerable to unauthorized stack overflow vulnerability when requesting admin.cgi parameter with setNtp.
CVSS Score
9.8
EPSS Score
0.001
Published
2025-03-26
CVE-2025-26006
Telesquare TLR-2005KSH 1.1.4 has an unauthorized stack overflow vulnerability when requesting the admin.cgi parameter with setAutorest.
CVSS Score
9.8
EPSS Score
0.001
Published
2025-03-26
CVE-2025-26007
Telesquare TLR-2005KSH 1.1.4 has an unauthorized stack overflow vulnerability in the login interface when requesting systemtil.cgi.
CVSS Score
9.8
EPSS Score
0.001
Published
2025-03-26
CVE-2025-26008
In Telesquare TLR-2005KSH 1.1.4, an unauthorized stack overflow vulnerability exists when requesting admin.cgi parameter with setSyncTimeHost.
CVSS Score
9.8
EPSS Score
0.001
Published
2025-03-26
CVE-2025-26009
Telesquare TLR-2005KSH 1.1.4 has an Information Disclosure vulnerability when requesting systemutilit.cgi.
CVSS Score
7.5
EPSS Score
0.0
Published
2025-03-26
CVE-2025-26001
Telesquare TLR-2005KSH 1.1.4 is vulnerable to Information Disclosure via the parameter getUserNamePassword.
CVSS Score
7.5
EPSS Score
0.0
Published
2025-03-26


Products
Pricing
Contact Us

Shodan ® - All rights reserved