Shodan
Vulnerabilities
Vulnerable Software
Telesquare:  Security Vulnerabilities
CVE-2025-26003
Telesquare TLR-2005KSH 1.1.4 is affected by an unauthorized command execution vulnerability when requesting the admin.cgi parameter with setAutorest.
CVSS Score
9.8
EPSS Score
0.001
Published
2025-03-26
CVE-2025-26004
Telesquare TLR-2005KSH 1.1.4 is vulnerable to unauthorized stack buffer overflow vulnerability when requesting admin.cgi parameter with setDdns.
CVSS Score
9.8
EPSS Score
0.001
Published
2025-03-26
CVE-2024-29269
An issue discovered in Telesquare TLR-2005Ksh 1.0.0 and 1.1.4 allows attackers to run arbitrary system commands via the Cmd parameter.
CVSS Score
8.8
EPSS Score
0.926
Published
2024-04-10
CVE-2021-46422
Telesquare SDT-CW3B1 1.1.0 is affected by an OS command injection vulnerability that allows a remote attacker to execute OS commands without any authentication.
CVSS Score
9.8
EPSS Score
0.943
Published
2022-04-27
CVE-2021-46423
Telesquare TLR-2005KSH 1.0.0 is affected by an unauthenticated file download vulnerability that allows a remote attacker to download a full configuration file.
CVSS Score
5.3
EPSS Score
0.003
Published
2022-04-27
CVE-2021-46424
Telesquare TLR-2005KSH 1.0.0 is affected by an arbitrary file deletion vulnerability that allows a remote attacker to delete any file, even system internal files, via a DELETE request.
CVSS Score
9.1
EPSS Score
0.915
Published
2022-04-27
CVE-2021-46418
An unauthorized file creation vulnerability in Telesquare TLR-2855KS6 via PUT method can allow creation of CGI scripts.
CVSS Score
7.5
EPSS Score
0.631
Published
2022-04-07
CVE-2021-46419
An unauthorized file deletion vulnerability in Telesquare TLR-2855KS6 via DELETE method can allow deletion of system files and scripts.
CVSS Score
9.1
EPSS Score
0.911
Published
2022-04-07
CVE-2021-45428
TLR-2005KSH is affected by an incorrect access control vulnerability. THe PUT method is enabled so an attacker can upload arbitrary files including HTML and CGI formats.
CVSS Score
9.8
EPSS Score
0.894
Published
2022-01-03
CVE-2018-12526
Telesquare SDT-CS3B1 and SDT-CW3B1 devices through 1.2.0 have a default factory account. Remote attackers can obtain access to the device via TELNET using a hardcoded account.
CVSS Score
9.8
EPSS Score
0.016
Published
2018-06-21


Products
Pricing
Contact Us

Shodan ® - All rights reserved