The Grandstream Wave app 1.0.1.26 and previous versions for Android does not use HTTPS when retrieving update information, which might allow man-in-the-middle malicious users to execute arbitrary code via a crafted application.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
grandstream wave |