Sign-up

ID

VAR-202404-3442


CVE

CVE-2024-29269


TITLE

Telesquare  of  TLR-2005KSH  Command injection vulnerability in firmware

Trust: 0.8

sources: JVNDB: JVNDB-2024-025121

DESCRIPTION

An issue discovered in Telesquare TLR-2005Ksh 1.0.0 and 1.1.4 allows attackers to run arbitrary system commands via the Cmd parameter. Telesquare of TLR-2005KSH Firmware contains a command injection vulnerability.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state

Trust: 1.62

sources: NVD: CVE-2024-29269 // JVNDB: JVNDB-2024-025121

AFFECTED PRODUCTS

vendor:telesquaremodel:tlr-2005kshscope:eqversion:1.1.4

Trust: 1.0

vendor:telesquaremodel:tlr-2005kshscope:eqversion:1.0.0

Trust: 1.0

vendor:telesquaremodel:tlr-2005kshscope:eqversion:tlr-2005ksh firmware 1.1.4

Trust: 0.8

vendor:telesquaremodel:tlr-2005kshscope:eqversion:tlr-2005ksh firmware 1.0.0

Trust: 0.8

vendor:telesquaremodel:tlr-2005kshscope:eqversion: -

Trust: 0.8

vendor:telesquaremodel:tlr-2005kshscope: - version: -

Trust: 0.8

sources: JVNDB: JVNDB-2024-025121 // NVD: CVE-2024-29269

CVSS

SEVERITY

CVSSV2

CVSSV3

134c704f-9b21-4f2e-91b3-4a467353bcc0: CVE-2024-29269
value: HIGH

Trust: 1.0

OTHER: JVNDB-2024-025121
value: HIGH

Trust: 0.8

134c704f-9b21-4f2e-91b3-4a467353bcc0: CVE-2024-29269
baseSeverity: HIGH
baseScore: 8.8
vectorString: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
attackVector: ADJACENT
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 2.8
impactScore: 5.9
version: 3.1

Trust: 1.0

OTHER: JVNDB-2024-025121
baseSeverity: HIGH
baseScore: 8.8
vectorString: CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
attackVector: ADJACENT NETWORK
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: NONE
impactScore: NONE
version: 3.0

Trust: 0.8

sources: JVNDB: JVNDB-2024-025121 // NVD: CVE-2024-29269

PROBLEMTYPE DATA

problemtype:CWE-77

Trust: 1.0

problemtype:Command injection (CWE-77) [ others ]

Trust: 0.8

sources: JVNDB: JVNDB-2024-025121 // NVD: CVE-2024-29269

EXTERNAL IDS

db:NVDid:CVE-2024-29269

Trust: 2.6

db:JVNDBid:JVNDB-2024-025121

Trust: 0.8

sources: JVNDB: JVNDB-2024-025121 // NVD: CVE-2024-29269

REFERENCES

url:https://github.com/wutalent/cve-2024-29269/blob/main/index.md

Trust: 1.8

url:https://nvd.nist.gov/vuln/detail/cve-2024-29269

Trust: 0.8

sources: JVNDB: JVNDB-2024-025121 // NVD: CVE-2024-29269

SOURCES

db:JVNDBid:JVNDB-2024-025121
db:NVDid:CVE-2024-29269

LAST UPDATE DATE

2025-06-20T23:18:29.262000+00:00


SOURCES UPDATE DATE

db:JVNDBid:JVNDB-2024-025121date:2025-06-18T01:29:00
db:NVDid:CVE-2024-29269date:2025-06-17T17:06:37.003

SOURCES RELEASE DATE

db:JVNDBid:JVNDB-2024-025121date:2025-06-18T00:00:00
db:NVDid:CVE-2024-29269date:2024-04-10T20:15:07.440