CVE-2020-5738

EPSS 5.4%CWE-59

Grandstream GXP1600 series firmware 1.0.4.152 and below is vulnerable to authenticated remote command execution when an attacker uploads a specially crafted tar file to the HTTP /cgi-bin/upload_vpntar interface.

Produtos afetados

n/a · Grandstream GXP1600 Series

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://www.tenable.com/security/research/tra-2020-22