EUVD-2017-18938

| CVE-2017-20222 HIGH
2026-03-16 VulnCheck
7.5
CVSS 3.1
Share

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High

Lifecycle Timeline

4
PoC Detected
Mar 16, 2026 - 14:53 vuln.today
Public exploit code
Analysis Generated
Mar 16, 2026 - 02:00 vuln.today
EUVD ID Assigned
Mar 16, 2026 - 02:00 euvd
EUVD-2017-18938
CVE Published
Mar 16, 2026 - 01:28 nvd
HIGH 7.5

Tags

Denial Of Service Authentication Bypass Sdt Cs3b1

Description

Telesquare SKT LTE Router SDT-CS3B1 software version 1.2.0 contains an unauthenticated remote reboot vulnerability that allows attackers to trigger device reboot without authentication. Attackers can send POST requests to the lte.cgi endpoint with the Command=Reboot parameter to cause denial of service by forcing the router to restart.

Analysis

An unauthenticated remote reboot vulnerability exists in the Telesquare SKT LTE Router SDT-CS3B1 firmware version 1.2.0, allowing attackers to trigger device restarts without any authentication by sending specially crafted POST requests to the lte.cgi endpoint. This vulnerability has a publicly available proof-of-concept exploit and enables denial of service attacks against affected routers. The vulnerability has been assigned a high CVSS score of 7.5 due to the complete availability impact and lack of authentication requirements.

Technical Context

The vulnerability affects the Telesquare SKT LTE Router model SDT-CS3B1 running firmware version 1.2.0, as identified by CPE string cpe:2.3:a:telesquare:sdt-cs3b1:*:*:*:*:*:*:*:*. The root cause is CWE-306 (Missing Authentication for Critical Function), where the lte.cgi endpoint accepts POST requests with the 'Command=Reboot' parameter without verifying the sender's identity. This CGI script appears to be a management interface that should require authentication but fails to implement any access controls, allowing anyone who can reach the router's web interface to trigger administrative actions.

Affected Products

Telesquare SKT LTE Router model SDT-CS3B1 running firmware version 1.2.0. According to ENISA EUVD data, specifically version 'SDT-CS3B1 1.2.0' is confirmed vulnerable. No information about other firmware versions is available in the provided intelligence, though the CPE wildcard suggests potential broader impact requiring vendor clarification.

Remediation

No patch information or updated firmware version is mentioned in any of the provided references. Primary mitigation involves restricting network access to the router's management interface through firewall rules or access control lists. Organizations should: 1) Limit access to the lte.cgi endpoint to trusted IP addresses only, 2) Place the router management interface on a separate management VLAN, 3) Contact Telesquare for firmware updates addressing this vulnerability, 4) Monitor for unusual reboot patterns that could indicate exploitation attempts. The VulnCheck advisory (https://www.vulncheck.com/advisories/telesquare-skt-lte-router-sdt-cs3b1-unauthenticated-remote-reboot) may contain additional vendor-specific guidance.

Priority Score

58
Low Medium High Critical
KEV: 0
EPSS: +0.2
CVSS: +38
POC: +20

Share

EUVD-2017-18938 vulnerability details – vuln.today
Back

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy