Vulnerabilities > Telesquare

DATE CVE VULNERABILITY TITLE RISK
2022-04-27 CVE-2021-46422 OS Command Injection vulnerability in Telesquare Sdt-Cs3B1 Firmware 1.1.0
Telesquare SDT-CW3B1 1.1.0 is affected by an OS command injection vulnerability that allows a remote attacker to execute OS commands without any authentication.
network
low complexity
telesquare CWE-78
critical
9.8
2022-04-27 CVE-2021-46423 Unspecified vulnerability in Telesquare Tlr-2005Ksh Firmware 1.0.0
Telesquare TLR-2005KSH 1.0.0 is affected by an unauthenticated file download vulnerability that allows a remote attacker to download a full configuration file.
network
low complexity
telesquare
5.3
2022-04-27 CVE-2021-46424 Unspecified vulnerability in Telesquare Tlr-2005Ksh Firmware 1.0.0
Telesquare TLR-2005KSH 1.0.0 is affected by an arbitrary file deletion vulnerability that allows a remote attacker to delete any file, even system internal files, via a DELETE request.
network
low complexity
telesquare
critical
9.1
2022-04-07 CVE-2021-46418 Unspecified vulnerability in Telesquare Tlr-2855Ks6 Firmware
An unauthorized file creation vulnerability in Telesquare TLR-2855KS6 via PUT method can allow creation of CGI scripts.
network
low complexity
telesquare
7.5
2022-04-07 CVE-2021-46419 Unspecified vulnerability in Telesquare Tlr-2855Ks6 Firmware
An unauthorized file deletion vulnerability in Telesquare TLR-2855KS6 via DELETE method can allow deletion of system files and scripts.
network
low complexity
telesquare
critical
9.1
2022-01-03 CVE-2021-45428 Authorization Bypass Through User-Controlled Key vulnerability in Telesquare Tlr-2005Ksh Firmware
TLR-2005KSH is affected by an incorrect access control vulnerability.
network
low complexity
telesquare CWE-639
critical
9.8
2018-06-21 CVE-2018-12526 Use of Hard-coded Credentials vulnerability in Telesquare Sdt-Cs3B1 Firmware and Sdt-Cw3B1 Firmware
Telesquare SDT-CS3B1 and SDT-CW3B1 devices through 1.2.0 have a default factory account.
network
low complexity
telesquare CWE-798
critical
9.8