An Insecure Direct Object Reference (IDOR) vulnerability in Telesquare SDT-CS3B1 routers allows attackers to bypass authorization and access sensitive...
Description
An Insecure Direct Object Reference (IDOR) vulnerability in Telesquare SDT-CS3B1 routers allows attackers to bypass authorization and access sensitive resources by manipulating input parameters.
AI Analyst Comment
Remediation
Update Infor Multiple Products to the latest version. Monitor for exploitation attempts and review access logs.
---METADATA---
VENDOR: Telesquare
PRODUCT: SKT LTE Router SDT-CS3B1
AFFECTED_VERSIONS: 1.2.0
---END_METADATA---
Description Summary:
An Insecure Direct Object Reference (IDOR) vulnerability in Telesquare SDT-CS3B1 routers allows attackers to bypass authorization and access sensitive resources by manipulating input parameters.
Executive Summary:
Telesquare routers are vulnerable to a critical authorization bypass that allows attackers to access sensitive system information and administrative functions without proper credentials.
Vulnerability Details
CVE-ID: CVE-2017-20223
Affected Software: Telesquare SKT LTE Router SDT-CS3B1
Affected Versions: 1.2.0
Vulnerability: The firmware contains an IDOR flaw where user-supplied input parameters are used to reference internal objects directly. An attacker can manipulate these parameters to bypass security checks and access resources they are not authorized to view.
Business Impact
A successful exploit allows for the unauthorized retrieval of sensitive configuration data, user credentials, or administrative control of the device. Given the CVSS score of 9.8, this vulnerability represents a near-total breakdown of the device's access control logic, potentially exposing the entire network segment managed by the router.
Remediation Plan
Immediate Action: Update the Telesquare SDT-CS3B1 firmware to the latest version to implement proper server-side authorization checks for all object references.
Proactive Monitoring: Audit web server logs for sequential or anomalous parameter changes in HTTP requests that might indicate an IDOR discovery attempt.
Compensating Controls: Implement an IP-based access control list (ACL) to restrict access to the router's management interface to known, trusted administrative workstations only.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of Mar 16, 2026, there is no public information indicating active exploitation. This is a late-disclosure vulnerability, meaning the flaw has existed for some time, increasing the likelihood that sophisticated actors may already be aware of it.
Analyst Recommendation
This critical IDOR vulnerability must be addressed immediately by updating the device firmware. Insecure Direct Object Reference flaws are often easy to exploit with automated tools; therefore, isolating the device management interface from the internet is a vital secondary defense.