Which versions of Sdt Cs3b1 are affected by EUVD-2017-18938?

An unauthenticated remote reboot vulnerability in Telesquare SKT LTE Router SDT-CS3B1 (firmware 1.2.0) allows attackers to remotely disable affected devices without credentials, creating a denial of…

Is there a public PoC exploit available for EUVD-2017-18938?

Yes, a public proof-of-concept exploit is available for EUVD-2017-18938. Prioritise patching immediately. EPSS: 0.2%.

How to fix or mitigate EUVD-2017-18938?

Within 24 hours: Inventory all Telesquare SKT LTE Router SDT-CS3B1 devices in production and document their network location and criticality. Within 7 days: Implement network segmentation to restrict access to the lte.cgi endpoint (block POST requests to management interfaces), deploy WAF rules to filter malicious payloads targeting this endpoint, and disable remote management if not operationally required. Within 30 days: Evaluate replacement with alternative router hardware from vendors with active security patching, or contact Telesquare directly for firmware updates or extended support; establish monitoring for exploitation attempts and configure router restarts logs for incident detection.

Sdt Cs3b1 EUVD-2017-18938

Q: What is the CVSS score of EUVD-2017-18938?

EUVD-2017-18938 has a CVSS 4.0 base score of 8.7 (High). CVSS vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X. EPSS exploitation probability: 0.2%.

| CVE-2017-20222 HIGH

Missing Authentication for Critical Function (CWE-306)

2026-03-16 VulnCheck

Denial Of Service Authentication Bypass Sdt Cs3b1

8.7

CVSS 4.0 · NVD

Severity by source

NVD PRIMARY

8.7 HIGH

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Lifecycle Timeline

CVSS changed

Apr 14, 2026 - 17:07 NVD

7.5 (HIGH) 8.7 (HIGH)

PoC Detected

Mar 16, 2026 - 14:53 vuln.today

Public exploit code

EUVD ID Assigned

Mar 16, 2026 - 02:00 euvd

EUVD-2017-18938

Analysis Generated

Mar 16, 2026 - 02:00 vuln.today

CVE Published

Mar 16, 2026 - 01:28 nvd

HIGH 7.5

DescriptionCVE.org

Telesquare SKT LTE Router SDT-CS3B1 software version 1.2.0 contains an unauthenticated remote reboot vulnerability that allows attackers to trigger device reboot without authentication. Attackers can send POST requests to the lte.cgi endpoint with the Command=Reboot parameter to cause denial of service by forcing the router to restart.

AnalysisAI

An unauthenticated remote reboot vulnerability exists in the Telesquare SKT LTE Router SDT-CS3B1 firmware version 1.2.0, allowing attackers to trigger device restarts without any authentication by sending specially crafted POST requests to the lte.cgi endpoint. This vulnerability has a publicly available proof-of-concept exploit and enables denial of service attacks against affected routers. The vulnerability has been assigned a high CVSS score of 7.5 due to the complete availability impact and lack of authentication requirements.

Technical ContextAI

The vulnerability affects the Telesquare SKT LTE Router model SDT-CS3B1 running firmware version 1.2.0, as identified by CPE string cpe:2.3:a:telesquare:sdt-cs3b1:*:*:*:*:*:*:*:*. The root cause is CWE-306 (Missing Authentication for Critical Function), where the lte.cgi endpoint accepts POST requests with the 'Command=Reboot' parameter without verifying the sender's identity. This CGI script appears to be a management interface that should require authentication but fails to implement any access controls, allowing anyone who can reach the router's web interface to trigger administrative actions.

RemediationAI

No patch information or updated firmware version is mentioned in any of the provided references. Primary mitigation involves restricting network access to the router's management interface through firewall rules or access control lists. Organizations should: 1) Limit access to the lte.cgi endpoint to trusted IP addresses only, 2) Place the router management interface on a separate management VLAN, 3) Contact Telesquare for firmware updates addressing this vulnerability, 4) Monitor for unusual reboot patterns that could indicate exploitation attempts. The VulnCheck advisory (https://www.vulncheck.com/advisories/telesquare-skt-lte-router-sdt-cs3b1-unauthenticated-remote-reboot) may contain additional vendor-specific guidance.

EUVD-2017-18938 vulnerability details – vuln.today

Back