PT-2026-25742 · Telesquare · Sdt-Cs3B1 Firmware
Published
2026-03-16
·
Updated
2026-03-16
·
CVE-2017-20224
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Telesquare SKT LTE Router SDT-CS3B1 version 1.2.0
Description
The Telesquare SKT LTE Router SDT-CS3B1 version 1.2.0 contains a flaw that allows unauthenticated attackers to upload malicious content. This is possible due to enabled WebDAV HTTP methods. Attackers can utilize HTTP methods such as PUT, DELETE, MKCOL, MOVE, COPY, and PROPPATCH to upload executable code, delete files, or manipulate server content, potentially leading to remote code execution or denial of service.
Recommendations
Update to a newer version that contains a fix for this vulnerability.
Exploit
Fix
RCE
DoS
Unrestricted File Upload
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Sdt-Cs3B1 Firmware