CVE-2021-46422 Scanner
Detects 'OS Command Injection' vulnerability in Telesquare SDT-CW3B1 affects v. 1.1.0.
Short Info
Level
Critical
Single Scan
Single Scan
Can be used by
Asset Owner
Estimated Time
10 seconds
Time Interval
1 month 3 days
Scan only one
URL
Toolbox
-
Telesquare SDT-CW3B1 is a network device designed for use by businesses to allow the easy and secure management of their telephony systems. It is often used in combination with a range of other networking equipment to provide a comprehensive solution for managing communications across multiple locations. The product is popular due to its ease of use, as well as its affordability, making it an attractive choice for small and medium-sized businesses.
Recently, security researchers discovered a vulnerability in the Telesquare SDT-CW3B1 device. The vulnerability, known as CVE-2021-46422, is an OS command injection flaw that enables remote attackers to execute OS commands on the device without requiring any authentication. This makes it incredibly dangerous since attackers can easily gain access to the device's system and critical information stored within it.
If this vulnerability is exploited, the attacker can gain full control of the device, access sensitive information, and cause significant damage to the network. For example, an attacker could gain access to phone numbers, call logs, and recordings, which could result in confidential information being leaked, leading to legal and financial damage to the business. Furthermore, they could take control of the whole telephony system, resulting in a complete shutdown, leading to loss of revenue and halting business operations.
s4e.io is a platform that provides excellent protection against vulnerabilities by keeping users informed about the latest threats and their solutions. With its pro features, businesses can quickly learn about vulnerabilities affecting their digital assets, and take proactive measures to prevent attacks before they occur. Therefore, businesses should use the platform to protect their digital assets and prevent any potential damage that may result from a vulnerability such as CVE-2021-46422.
REFERENCES