Published: 29/07/2020 Updated: 31/07/2020
CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6
Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Vulnerability Summary

Grandstream HT800 could allow a remote malicious user to execute arbitrary commands on the system. By using a specially crafted configuration file and sending a specially crafted SIP message, an attacker could exploit this vulnerability to execute arbitrary OS commands as root on the system.

Vulnerability Trend

Recent Articles

4 Unpatched Bugs Plague Grandstream ATAs for VoIP Users
Threatpost • Tara Seals • 31 Jul 2020

Multiple high-severity vulnerabilities in the Grandstream HT800 series of Analog Telephone Adaptors (ATAs) threaten home office and midrange users alike, with outages, eavesdropping and device takeover.
The HT800 series of ATAs is designed for everyone from home or small-office users to medium-sized businesses, looking to connect their analog telephone devices to a VoIP network, unified communications system or other IP-based communications infrastructure. According to analysis from Tenabl...