CVE-2017-20221 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

Telesquare SKT LTE Router SDT-CS3B1 version 1.2.0 contains a cross-site request forgery vulnerability that allows authenticated attackers to execute arbitrary s…
Medium CVSS: 5.3

CVE-2017-20221

Telesquare SKT LTE Router SDT-CS3B1 version 1.2.0 contains a cross-site request forgery vulnerability that allows authenticated attackers to execute arbitrary system commands by exploiting missing request validation. Attackers can craft malicious web pages that perform administrative actions when visited by logged-in users, enabling command execution with router privileges.
Vendor
-
Product
-
CWE
CWE-352
Yayın Tarihi
2026-03-16 14:17:51
Güncelleme
2026-03-16 14:53:46
Source Identifier
disclosure@vulncheck.com
KEV Date Added
-

Kategoriler

CWE-352 MEDIUM 2026

Referanslar

https://cxsecurity.com/issue/WLB-2017120299 https://exchange.xforce.ibmcloud.com/vulnerabilities/136839 https://packetstormsecurity.com/files/145550 https://www.exploit-db.com/exploits/43400/ https://www.vulncheck.com/advisories/telesquare-skt-lte-router-sdt-cs3b1-csrf-system-command-execution https://www.zeroscience.mk/en/vulnerabilities/ZSL-2017-5443.php