CVE-2017-20222

HIGH

Telesquare SKT LTE Router SDT-CS3B1 Unauthenticated Remote Reboot

Title source: cna
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2017-20222. PoCs published by LiquidWorm.

AI-analyzed exploit summary This Python script exploits an unauthenticated reboot command execution vulnerability in Telesquare SKT LTE Router SDT-CS3B1 by sending a crafted HTTP GET request to the router's CGI endpoint, causing a denial of service (DoS) via reboot.

Description

Telesquare SKT LTE Router SDT-CS3B1 software version 1.2.0 contains an unauthenticated remote reboot vulnerability that allows attackers to trigger device reboot without authentication. Attackers can send POST requests to the lte.cgi endpoint with the Command=Reboot parameter to cause denial of service by forcing the router to restart.

Exploits (1)

exploitdb WORKING POC
by LiquidWorm · pythondoshardware
https://www.exploit-db.com/exploits/43401

This Python script exploits an unauthenticated reboot command execution vulnerability in Telesquare SKT LTE Router SDT-CS3B1 by sending a crafted HTTP GET request to the router's CGI endpoint, causing a denial of service (DoS) via reboot.

Classification
Working Poc 100%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: Telesquare SKT LTE Router SDT-CS3B1 (FwVer: SDT-CS3B1, sw version 1.2.0)
No auth needed
Prerequisites: network access to the target router · router's IP address and port
devstral-2 · analyzed Mar 16, 2026 Full analysis →

References (6)

Core 6
Core References
Third Party Advisory third-party-advisory
Zero Science Lab Disclosure
https://www.zeroscience.mk/en/vulnerabilities/ZSL-2017-5444.php
Third Party Advisory third-party-advisory
CXSecurity
https://cxsecurity.com/issue/WLB-2017120300
Exploit exploit
Packet Storm Security
https://packetstormsecurity.com/files/145555
Exploit exploit
Exploit DB
https://www.exploit-db.com/exploits/43401/
Vdb Entry vdb-entry
IBM X-Force Exchange
https://exchange.xforce.ibmcloud.com/vulnerabilities/136825
Third Party Advisory third-party-advisory
VulnCheck Advisory: Telesquare SKT LTE Router SDT-CS3B1 Unauthenticated Remote Reboot
https://www.vulncheck.com/advisories/telesquare-skt-lte-router-sdt-cs3b1-unauthenticated-remote-reboot

Scores

CVSS v3 7.5
EPSS 0.0071
EPSS Percentile 48.4%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment
Exploitation poc
Automatable yes
Technical Impact partial

Details

CWE
CWE-306
Status published
Products (2)
Telesquare/SDT-CS3B1 1.2.0
telesquare/sdt-cs3b1_firmware 1.2.0
Published Mar 16, 2026
Tracked Since Mar 16, 2026