CVE-2025-26006
Published: 26 March 2025
Description
Adversaries may attempt to exploit a weakness in an Internet-facing host or system to initially access a network.
Security Summary
CVE-2025-26006 is an unauthorized stack overflow vulnerability in Telesquare TLR-2005KSH version 1.1.4. The flaw is triggered when processing requests to the admin.cgi parameter with the setAutorest option, classified under CWE-120. Published on 2025-03-26, it carries a CVSS v3.1 base score of 9.8, reflecting its critical severity due to network accessibility, low attack complexity, and no requirements for privileges or user interaction.
Remote attackers can exploit this vulnerability over the network without authentication by sending a specially crafted request to the affected admin.cgi endpoint. Successful exploitation could result in high impacts on confidentiality, integrity, and availability, potentially allowing arbitrary code execution, data disclosure, or denial of service through stack overflow corruption.
Mitigation details are available in the referenced advisory at https://github.com/Fan-24/Digging/blob/main/4/1.md. No specific patches or vendor updates are detailed in the CVE publication.
Details
- CWE(s)
Affected Products
MITRE ATT&CK Enterprise Techniques
Why these techniques?
The CVE describes a remote unauthenticated stack overflow in a public-facing admin.cgi web endpoint on a network device, directly enabling exploitation of public-facing applications for remote code execution or denial of service.