Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ht801_firmware vulnerabilities and exploits
(subscribe to this query)
801
VMScore
CVE-2021-37748
Multiple buffer overflows in the limited configuration shell (/sbin/gs_config) on Grandstream HT801 devices prior to 1.0.29 allow remote authenticated users to execute arbitrary code as root via a crafted manage_if setting, thus bypassing the intended restrictions of this shell a...
Grandstream Ht801 Firmware
1 Github repository
801
VMScore
CVE-2021-37915
An issue exists on the Grandstream HT801 Analog Telephone Adaptor prior to 1.0.29.8. From the limited configuration shell, it is possible to set the malicious gdb_debug_server variable. As a result, after a reboot, the device downloads and executes malicious scripts from an attac...
Grandstream Ht801 Firmware
1 Github repository
828
VMScore
CVE-2020-5760
Grandstream HT800 series firmware version 1.0.17.5 and below is vulnerable to an OS command injection vulnerability. Unauthenticated remote attackers can execute arbitrary commands as root by crafting a special configuration file and sending a crafted SIP message.
Grandstream Ht801 Firmware
Grandstream Ht802 Firmware
Grandstream Ht812 Firmware
Grandstream Ht814 Firmware
Grandstream Ht818 Firmware
Grandstream Ht813 Firmware
694
VMScore
CVE-2020-5761
Grandstream HT800 series firmware version 1.0.17.5 and below is vulnerable to CPU exhaustion due to an infinite loop in the TR-069 service. Unauthenticated remote attackers can trigger this case by sending a one character TCP message to the TR-069 service.
Grandstream Ht801 Firmware
Grandstream Ht802 Firmware
Grandstream Ht812 Firmware
Grandstream Ht814 Firmware
Grandstream Ht818 Firmware
Grandstream Ht813 Firmware
801
VMScore
CVE-2020-5763
Grandstream HT800 series firmware version 1.0.17.5 and below contain a backdoor in the SSH service. An authenticated remote attacker can obtain a root shell by correctly answering a challenge prompt.
Grandstream Ht801 Firmware
Grandstream Ht802 Firmware
Grandstream Ht812 Firmware
Grandstream Ht814 Firmware
Grandstream Ht818 Firmware
Grandstream Ht813 Firmware
445
VMScore
CVE-2020-5762
Grandstream HT800 series firmware version 1.0.17.5 and below is vulnerable to a denial of service attack against the TR-069 service. An unauthenticated remote attacker can stop the service due to a NULL pointer dereference in the TR-069 service. This condition is triggered due to...
Grandstream Ht801 Firmware
Grandstream Ht802 Firmware
Grandstream Ht812 Firmware
Grandstream Ht814 Firmware
Grandstream Ht818 Firmware
Grandstream Ht813 Firmware
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4040
privilege escalation
CVE-2024-4112
CVE-2024-32872
man-in-the-middle
CVE-2024-32788
bypass
CVE-2024-3400
CVE-2024-28976
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started