First published: Wed Mar 26 2025(Updated: )
Telesquare TLR-2005KSH 1.1.4 is affected by an unauthorized stack overflow vulnerability when requesting the admin.cgi parameter with setSyncTimeHost.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Telesquare TLR-2005KSH Firmware |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2025-26002 is classified as a high severity vulnerability due to the potential for unauthorized stack overflow attacks.
To fix CVE-2025-26002, update your Telesquare TLR-2005KSH firmware to the latest version provided by the vendor.
CVE-2025-26002 can be exploited through unauthorized remote code execution resulting from a stack overflow.
If you are using Telesquare TLR-2005KSH version 1.1.4, your device is vulnerable to CVE-2025-26002.
The affected component in CVE-2025-26002 is the admin.cgi parameter when handling setSyncTimeHost commands.