CVE-2021-45428

CRITICAL NUCLEI

TLR-2005KSH Firmware - Unauthenticated Arbitrary File Upload via PUT Method

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2021-45428. PoCs published by Ahmed Alroky, projectforsix. A Nuclei detection template is also available.

AI-analyzed exploit summary This exploit demonstrates an arbitrary file upload vulnerability in Telesquare TLR-2021 via WebDAV's PUT method, allowing unauthorized remote code execution by uploading malicious files. The PoC includes a raw HTTP PUT request to upload a file to the target server.

Description

TLR-2005KSH is affected by an incorrect access control vulnerability. THe PUT method is enabled so an attacker can upload arbitrary files including HTML and CGI formats.

Exploits (2)

exploitdb WORKING POC

by Ahmed Alroky · textwebappshardware

https://www.exploit-db.com/exploits/50931

View Code ZIP pw:eip

This exploit demonstrates an arbitrary file upload vulnerability in Telesquare TLR-2021 via WebDAV's PUT method, allowing unauthorized remote code execution by uploading malicious files. The PoC includes a raw HTTP PUT request to upload a file to the target server.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: Telesquare TLR-2021

No auth needed

Prerequisites: Network access to the target server · WebDAV enabled on the target server

MITRE ATT&CK

T1105 - Ingress Tool Transfer T1210 - Exploitation of Remote Services

devstral-2 · analyzed Feb 16, 2026 Full analysis →

nomisec SUSPICIOUS

by projectforsix · poc

https://github.com/projectforsix/CVE-2021-45428-Defacer

View Code ZIP pw:eip

The repository claims to exploit CVE-2021-45428 (a deserialization vulnerability in Apache Shiro) but contains a Python script that appears to be a defacer tool, which does not align with the CVE's technical details. The code lacks proper exploitation logic for the stated vulnerability.

Classification

Suspicious 60%

Attack Type

Other

Complexity

Trivial

Reliability

Theoretical

Target: Unclear (claims Apache Shiro but lacks relevant exploitation)

No auth needed

Prerequisites: A list of target URLs in a .TXT file · A defacement HTML file

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Nuclei Templates (1)

Telesquare TLR-2005KSH 1.0.0 - Arbitrary File Upload

CRITICALVERIFIEDby gy741

Shodan: http.html:"TLR-2005KSH"

References (2)

Core 2

Core References

Exploit, Third Party Advisory x_refsource_misc

https://drive.google.com/file/d/1wM1SPOfB9mH2SES7cAmlysuI9fOpFB3F/view?usp=sharing

Exploit, Third Party Advisory, VDB Entry x_refsource_misc

http://packetstormsecurity.com/files/167101/TLR-2005KSH-Arbitrary-File-Upload.html

Scores

CVSS v3 9.8

EPSS 0.5693

EPSS Percentile 98.9%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-639

Status published

Products (1)

telesquare/tlr-2005ksh_firmware

Published Jan 03, 2022

Tracked Since Feb 18, 2026