cbcvebase.

Telesquare Tlr-2005Ksh Firmware vulnerabilities

16 known vulnerabilities affecting telesquare/tlr-2005ksh_firmware.

Total CVEs
16
CISA KEV
0
Public exploits
2
Exploited in wild
1
Severity breakdown
CRITICAL11HIGH4MEDIUM1

Vulnerabilities

Page 1 of 1
CVE-2024-29269P1HIGHCVSS 8.8ExploitedPoCv1.0.0v1.1.42024-04-10
CVE-2024-29269 [HIGH] CWE-77 CVE-2024-29269: An issue discovered in Telesquare TLR-2005Ksh 1.0.0 and 1.1.4 allows attackers to run arbitrary syst An issue discovered in Telesquare TLR-2005Ksh 1.0.0 and 1.1.4 allows attackers to run arbitrary system commands via the Cmd parameter.
nvd
CVE-2021-46424P2CRITICALCVSS 9.1PoCv1.0.02022-04-27
CVE-2021-46424 [CRITICAL] CVE-2021-46424: Telesquare TLR-2005KSH 1.0.0 is affected by an arbitrary file deletion vulnerability that allows a r Telesquare TLR-2005KSH 1.0.0 is affected by an arbitrary file deletion vulnerability that allows a remote attacker to delete any file, even system internal files, via a DELETE request.
nvd
CVE-2025-9603P2CRITICALCVSS 9.8v1.2.42025-08-29
CVE-2025-9603 [CRITICAL] CWE-74 CVE-2025-9603: A vulnerability was determined in Telesquare TLR-2005KSH 1.2.4. The affected element is an unknown f A vulnerability was determined in Telesquare TLR-2005KSH 1.2.4. The affected element is an unknown function of the file /cgi-bin/internet.cgi?Command=lanCfg. Executing manipulation of the argument Hostname can lead to command injection. The attack may be performed from a remote location. The exploit has been publicly disclosed and may be utilized. Th
nvd
CVE-2025-26003P2CRITICALCVSS 9.8v1.1.42025-03-26
CVE-2025-26003 [CRITICAL] CWE-94 CVE-2025-26003: Telesquare TLR-2005KSH 1.1.4 is affected by an unauthorized command execution vulnerability when req Telesquare TLR-2005KSH 1.1.4 is affected by an unauthorized command execution vulnerability when requesting the admin.cgi parameter with setAutorest.
nvd
CVE-2025-26002P2CRITICALCVSS 9.8v1.1.42025-03-26
CVE-2025-26002 [CRITICAL] CWE-120 CVE-2025-26002: Telesquare TLR-2005KSH 1.1.4 is affected by an unauthorized stack overflow vulnerability when reques Telesquare TLR-2005KSH 1.1.4 is affected by an unauthorized stack overflow vulnerability when requesting the admin.cgi parameter with setSyncTimeHost.
nvd
CVE-2025-26011P3CRITICALCVSS 9.8v1.1.42025-03-26
CVE-2025-26011 [CRITICAL] CWE-120 CVE-2025-26011: Telesquare TLR-2005KSH 1.1.4 has an unauthorized stack overflow vulnerability when requesting the ad Telesquare TLR-2005KSH 1.1.4 has an unauthorized stack overflow vulnerability when requesting the admin.cgi parameter with setUsernamePassword.
nvd
CVE-2025-26006P3CRITICALCVSS 9.8v1.1.42025-03-26
CVE-2025-26006 [CRITICAL] CWE-120 CVE-2025-26006: Telesquare TLR-2005KSH 1.1.4 has an unauthorized stack overflow vulnerability when requesting the ad Telesquare TLR-2005KSH 1.1.4 has an unauthorized stack overflow vulnerability when requesting the admin.cgi parameter with setAutorest.
nvd
CVE-2025-26007P3CRITICALCVSS 9.8v1.1.42025-03-26
CVE-2025-26007 [CRITICAL] CWE-120 CVE-2025-26007: Telesquare TLR-2005KSH 1.1.4 has an unauthorized stack overflow vulnerability in the login interface Telesquare TLR-2005KSH 1.1.4 has an unauthorized stack overflow vulnerability in the login interface when requesting systemtil.cgi.
nvd
CVE-2025-26005P3CRITICALCVSS 9.8v1.1.42025-03-26
CVE-2025-26005 [CRITICAL] CWE-120 CVE-2025-26005: Telesquare TLR-2005KSH 1.1.4 is vulnerable to unauthorized stack overflow vulnerability when request Telesquare TLR-2005KSH 1.1.4 is vulnerable to unauthorized stack overflow vulnerability when requesting admin.cgi parameter with setNtp.
nvd
CVE-2025-26010P3CRITICALCVSS 9.8v1.1.42025-03-26
CVE-2025-26010 [CRITICAL] CWE-284 CVE-2025-26010: Telesquare TLR-2005KSH 1.1.4 allows unauthorized password modification when requesting the admin.cgi Telesquare TLR-2005KSH 1.1.4 allows unauthorized password modification when requesting the admin.cgi parameter with setUserNamePassword.
nvd
CVE-2025-26004P3CRITICALCVSS 9.8v1.1.42025-03-26
CVE-2025-26004 [CRITICAL] CWE-120 CVE-2025-26004: Telesquare TLR-2005KSH 1.1.4 is vulnerable to unauthorized stack buffer overflow vulnerability when Telesquare TLR-2005KSH 1.1.4 is vulnerable to unauthorized stack buffer overflow vulnerability when requesting admin.cgi parameter with setDdns.
nvd
CVE-2025-26008P3CRITICALCVSS 9.8v1.1.42025-03-26
CVE-2025-26008 [CRITICAL] CWE-120 CVE-2025-26008: In Telesquare TLR-2005KSH 1.1.4, an unauthorized stack overflow vulnerability exists when requesting In Telesquare TLR-2005KSH 1.1.4, an unauthorized stack overflow vulnerability exists when requesting admin.cgi parameter with setSyncTimeHost.
nvd
CVE-2025-28361P3HIGHCVSS 7.5v1.1.42025-03-26
CVE-2025-28361 [HIGH] CWE-120 CVE-2025-28361: Unauthorized stack overflow vulnerability in Telesquare TLR-2005KSH v.1.1.4 allows a remote attacker Unauthorized stack overflow vulnerability in Telesquare TLR-2005KSH v.1.1.4 allows a remote attacker to obtain sensitive information via the systemutil.cgi component.
nvd
CVE-2025-26001P3HIGHCVSS 7.5v1.1.42025-03-26
CVE-2025-26001 [HIGH] CWE-200 CVE-2025-26001: Telesquare TLR-2005KSH 1.1.4 is vulnerable to Information Disclosure via the parameter getUserNamePa Telesquare TLR-2005KSH 1.1.4 is vulnerable to Information Disclosure via the parameter getUserNamePassword.
nvd
CVE-2025-26009P3HIGHCVSS 7.5v1.1.42025-03-26
CVE-2025-26009 [HIGH] CWE-200 CVE-2025-26009: Telesquare TLR-2005KSH 1.1.4 has an Information Disclosure vulnerability when requesting systemutili Telesquare TLR-2005KSH 1.1.4 has an Information Disclosure vulnerability when requesting systemutilit.cgi.
nvd
CVE-2021-46423P4MEDIUMCVSS 5.3v1.0.02022-04-27
CVE-2021-46423 [MEDIUM] CVE-2021-46423: Telesquare TLR-2005KSH 1.0.0 is affected by an unauthenticated file download vulnerability that allo Telesquare TLR-2005KSH 1.0.0 is affected by an unauthenticated file download vulnerability that allows a remote attacker to download a full configuration file.
nvd
Telesquare Tlr-2005Ksh Firmware vulnerabilities | cvebase