Grandstream HT800 series firmware version 1.0.17.5 and below is vulnerable to an OS command injection vulnerability. Unauthenticated remote attackers can execute arbitrary commands as root by crafting a special configuration file and sending a crafted SIP message.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
grandstream ht801_firmware |
||
grandstream ht802_firmware |
||
grandstream ht812_firmware |
||
grandstream ht814_firmware |
||
grandstream ht818_firmware |
||
grandstream ht813_firmware |