Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ht801_firmware vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2021-37748
Multiple buffer overflows in the limited configuration shell (/sbin/gs_config) on Grandstream HT801 devices prior to 1.0.29 allow remote authenticated users to execute arbitrary code as root via a crafted manage_if setting, thus bypassing the intended restrictions of this shell a...
Grandstream Ht801 Firmware
1 Github repository
8.8
CVSSv3
CVE-2021-37915
An issue exists on the Grandstream HT801 Analog Telephone Adaptor prior to 1.0.29.8. From the limited configuration shell, it is possible to set the malicious gdb_debug_server variable. As a result, after a reboot, the device downloads and executes malicious scripts from an attac...
Grandstream Ht801 Firmware
1 Github repository
7.5
CVSSv3
CVE-2020-5762
Grandstream HT800 series firmware version 1.0.17.5 and below is vulnerable to a denial of service attack against the TR-069 service. An unauthenticated remote attacker can stop the service due to a NULL pointer dereference in the TR-069 service. This condition is triggered due to...
Grandstream Ht801 Firmware
Grandstream Ht802 Firmware
Grandstream Ht812 Firmware
Grandstream Ht814 Firmware
Grandstream Ht818 Firmware
Grandstream Ht813 Firmware
7.8
CVSSv3
CVE-2020-5760
Grandstream HT800 series firmware version 1.0.17.5 and below is vulnerable to an OS command injection vulnerability. Unauthenticated remote attackers can execute arbitrary commands as root by crafting a special configuration file and sending a crafted SIP message.
Grandstream Ht801 Firmware
Grandstream Ht802 Firmware
Grandstream Ht812 Firmware
Grandstream Ht814 Firmware
Grandstream Ht818 Firmware
Grandstream Ht813 Firmware
7.5
CVSSv3
CVE-2020-5761
Grandstream HT800 series firmware version 1.0.17.5 and below is vulnerable to CPU exhaustion due to an infinite loop in the TR-069 service. Unauthenticated remote attackers can trigger this case by sending a one character TCP message to the TR-069 service.
Grandstream Ht801 Firmware
Grandstream Ht802 Firmware
Grandstream Ht812 Firmware
Grandstream Ht814 Firmware
Grandstream Ht818 Firmware
Grandstream Ht813 Firmware
8.8
CVSSv3
CVE-2020-5763
Grandstream HT800 series firmware version 1.0.17.5 and below contain a backdoor in the SSH service. An authenticated remote attacker can obtain a root shell by correctly answering a challenge prompt.
Grandstream Ht801 Firmware
Grandstream Ht802 Firmware
Grandstream Ht812 Firmware
Grandstream Ht814 Firmware
Grandstream Ht818 Firmware
Grandstream Ht813 Firmware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26101
buffer overflow
CVE-2022-26766
CVE-2022-46689
CVE-2024-26124
CVE-2024-26059
firmware
hard-coded
CVE-2024-26118
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started