CVE-2025-26003

Name of the Vulnerable Software and Affected Versions Telesquare TLR-2005KSH version 1.1.4

Description The issue is related to an unauthorized command execution vulnerability. This occurs when the admin.cgi parameter is requested with setAutorest.

Recommendations For Telesquare TLR-2005KSH version 1.1.4, as a temporary workaround, consider restricting access to the admin.cgi parameter to minimize the risk of exploitation. Avoid using the setAutorest parameter in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.