CVE-2017-20222 PUBLISHED

Telesquare SKT LTE Router SDT-CS3B1 Unauthenticated Remote Reboot

Assigner: VulnCheck
Reserved: 15.03.2026 Published: 16.03.2026 Updated: 16.03.2026

Telesquare SKT LTE Router SDT-CS3B1 software version 1.2.0 contains an unauthenticated remote reboot vulnerability that allows attackers to trigger device reboot without authentication. Attackers can send POST requests to the lte.cgi endpoint with the Command=Reboot parameter to cause denial of service by forcing the router to restart.

Metrics

CVSS Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
CVSS Score: 8.7

Product Status

Vendor Telesquare
Product SDT-CS3B1
Versions
  • Version 1.2.0 is affected

Credits

  • LiquidWorm as Gjoko Krstic of Zero Science Lab finder

References

Problem Types

  • Missing Authentication for Critical Function CWE