Critical severity9.8NVD Advisory· Published Mar 16, 2026· Updated Apr 14, 2026
CVE-2017-20224
CVE-2017-20224
Description
Telesquare SKT LTE Router SDT-CS3B1 version 1.2.0 contains an arbitrary file upload vulnerability that allows unauthenticated attackers to upload malicious content by exploiting enabled WebDAV HTTP methods. Attackers can use PUT, DELETE, MKCOL, MOVE, COPY, and PROPPATCH methods to upload executable code, delete files, or manipulate server content for remote code execution or denial of service.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- cpe:2.3:o:telesquare:sdt-cs3b1_firmware:1.2.0:*:*:*:*:*:*:*
- Range: = 1.2.0
Patches
Vulnerability mechanics
References
3- cxsecurity.com/issue/WLB-2017120301nvdExploitIssue Tracking
- www.zeroscience.mk/en/vulnerabilities/ZSL-2017-5446.phpnvdExploitThird Party Advisory
- www.vulncheck.com/advisories/telesquare-skt-lte-router-sdt-cs3b1-webdav-arbitrary-file-uploadnvdThird Party Advisory
News mentions
0No linked articles in our index yet.