GCVE - cpe:2.3:h:telesquare:tlr-2005ksh:-:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:h:telesquare:tlr-2005ksh:-:*:*:*:*:*:*:*

part: h version: - update: *

Vendor	Telesquare (`6fce13c8-9bc5-549f-a7fc-920fdb8c0616`)
Product	Tlr 2005Ksh (`f0e8aeb7-a0bb-50a2-98a1-069b29a7c915`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2025-9603`	not_vulnerable	2026-06-08 07:47:09.335171	Telesquare TLR-2005KSH internet.cgi command injection MEDIUM (6.3) A vulnerability was determined in Telesquare TLR-2005KSH 1.2.4. The affected element is an unknown function of the file /cgi-bin/internet.cgi?Command=lanCfg. Executing manipulation of the argument Hostname can lead to command injection. The attack may be performed from a remote location. The exploit has been publicly disclosed and may be utilized. The vendor was contacted early about this disclosure but did not respond in any way. Published: 2025-08-29T01:32:05.620Z Updated: 2025-08-29T14:14:52.005Z Open on db.gcve.eu Reference links https://vuldb.com/?id.321779 https://vuldb.com/?ctiid.321779 https://vuldb.com/?submit.636414 https://github.com/lin-3-start/lin-cve/blob/main/Telesquare%20Tlr-2005Ksh/Telesquare%20Tlr-2005Ksh%E5%AD%98%E5%9C%A8%E5%91%BD%E4%BB%A4%E6%B3%A8%E5%85%A5%E6%BC%8F%E6%B4%9E.md https://github.com/lin-3-start/lin-cve/blob/main/Telesquare%20Tlr-2005Ksh/Telesquare%20Tlr-2005Ksh%E5%AD%98%E5%9C%A8%E5%91%BD%E4%BB%A4%E6%B3%A8%E5%85%A5%E6%BC%8F%E6%B4%9E.md#3poc	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2024-29269`	not_vulnerable	2026-06-08 06:33:29.078097	Details available An issue discovered in Telesquare TLR-2005Ksh 1.0.0 and 1.1.4 allows attackers to run arbitrary system commands via the Cmd parameter. Published: 2024-04-10T00:00:00.000Z Updated: 2024-08-27T17:44:14.450Z Open on db.gcve.eu Reference links https://github.com/wutalent/CVE-2024-29269/blob/main/index.md	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-46424`	not_vulnerable	2026-06-08 05:38:03.364513	Details available Telesquare TLR-2005KSH 1.0.0 is affected by an arbitrary file deletion vulnerability that allows a remote attacker to delete any file, even system internal files, via a DELETE request. Published: 2022-04-27T11:34:51.000Z Updated: 2024-08-04T05:02:11.797Z Open on db.gcve.eu Reference links https://drive.google.com/drive/folders/1_e3eJ8fzhCWnCkoRpbLoyQecuKkPR4OD?usp=sharing http://packetstormsecurity.com/files/167127/TLR-2005KSH-Arbitrary-File-Delete.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-46423`	not_vulnerable	2026-06-08 05:38:03.363759	Details available Telesquare TLR-2005KSH 1.0.0 is affected by an unauthenticated file download vulnerability that allows a remote attacker to download a full configuration file. Published: 2022-04-27T11:23:02.000Z Updated: 2024-08-04T05:02:11.543Z Open on db.gcve.eu Reference links https://drive.google.com/drive/folders/1iY4QqzZLdYgwD0LYc74M4Gm2wSC6Be1u?usp=sharing	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-45428`	not_vulnerable	2026-06-08 05:36:48.130828	Details available TLR-2005KSH is affected by an incorrect access control vulnerability. THe PUT method is enabled so an attacker can upload arbitrary files including HTML and CGI formats. Published: 2022-01-03T13:25:27.000Z Updated: 2024-08-04T04:39:20.809Z Open on db.gcve.eu Reference links https://drive.google.com/file/d/1wM1SPOfB9mH2SES7cAmlysuI9fOpFB3F/view?usp=sharing http://packetstormsecurity.com/files/167101/TLR-2005KSH-Arbitrary-File-Upload.html	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.