CVE-2017-20224 - Vulnerability Analysis
CriticalCVSS: 9.8Last Updated: March 16, 2026
Telesquare SKT LTE Router - Unrestricted File Upload
Published: March 16, 2026Updated: March 16, 2026Remote Exploitable
Overview
Telesquare SKT LTE Router SDT-CS3B1 1.2.0 contains an unrestricted file upload vulnerability caused by enabled WebDAV HTTP methods, letting unauthenticated attackers upload malicious files and manipulate server content for remote code execution or denial of service.
Severity & Score
Severity: Critical
CVSS Score: 9.8
Impact
Unauthenticated attackers can upload malicious files, execute code remotely, or cause denial of service, compromising the router's security and availability.
Mitigation
Update to the latest version that disables or properly secures WebDAV HTTP methods.
References
Related Resources
Details
- CVE ID
- CVE-2017-20224
- Severity
- Critical
- CVSS Score
- 9.8
- Type
- unrestricted_file_upload
- Status
- unconfirmed
CWE
- CWE-434
CVSS Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H