CVE-2020-5739
8.8
Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Exploitability: 2.8 / Impact: 5.9
Source: NVD
Description
Grandstream GXP1600 series firmware 1.0.4.152 and below is vulnerable to authenticated remote command execution when an attacker adds an OpenVPN up script to the phone's VPN settings via the "Additional Settings" field in the web interface. When the VPN's connection is established, the user defined script is executed with root privileges.
Affected (6)
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 1.0.4.152 |
| Running on/with | Platform Versions |
|---|---|
Grandstream Gxp1610 | All versions |
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 1.0.4.152 |
| Running on/with | Platform Versions |
|---|---|
Grandstream Gxp1615 | All versions |
Configuration C
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 1.0.4.152 |
| Running on/with | Platform Versions |
|---|---|
Grandstream Gxp1620 | All versions |
Configuration D
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 1.0.4.152 |
| Running on/with | Platform Versions |
|---|---|
Grandstream Gxp1625 | All versions |
Configuration E
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 1.0.4.152 |
| Running on/with | Platform Versions |
|---|---|
Grandstream Gxp1628 | All versions |
Configuration F
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 1.0.4.152 |
| Running on/with | Platform Versions |
|---|---|
Grandstream Gxp1630 | All versions |
References (2)
Source: vulnreport@tenable.com
ExploitVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
ExploitVendor Advisory
Timeline
No history available yet.