Zero-Day Advisory
Fortinet Discovers Telesquare SDT-CS3B1/SDT-CW3B1 Backdoor Access Vulnerability
Summary
Fortinet's FortiGuard Labs has discovered a backdoor access vulnerability in some routers shipped by the company Telesquare.
Telesquare manufactures a series of network routers directly competing with D-Link, Linksys or Asus routers.
A malicious user can use a default telnet account to get unauthorized access to vulnerable devices.
Solutions
FortiGuard Labs released the following FortiGate IPS signature which covers this specific vulnerability:Telesquare.SDT.Router.Backdoor.Access
Released Jun 18, 2018
Users should apply the solution provided by Telesquare.
Timeline
Fortinet reported the vulnerability to Telesquare on May 14, 2018
Telesquare confirmed the vulnerability on June 5, 2018.
Telesquare patched the vulnerability on June 20, 2018.