Grandstream Vulnérabilités

Chronologie

Taper

Not Defined	39
IP Phone Software	4
Android App Software	3
Network Camera Software	1

Produit

Grandstream UCM6200	7
Grandstream HT800	4
Grandstream GWN7000	3
Grandstream GXP16xx VoIP	3
Grandstream Wave App	3

Contre-mesures

Official Fix	17
Temporary Fix	0
Workaround	0
Unavailable	3
Not Defined	27

Exploitabilité

High	1
Functional	0
Proof-of-Concept	8
Unproven	1
Not Defined	37

Vecteur d'accès

Not Defined	0
Physical	0
Local	0
Adjacent	2
Network	45

Authentification

Not Defined	0
High	0
Low	17
None	30

Interaction de l'utilisateur

Not Defined	0
Required	2
None	45

C3BM Index

CVSSv3 Base

≤1	0
≤2	0
≤3	0
≤4	0
≤5	1
≤6	6
≤7	9
≤8	16
≤9	11
≤10	4

CVSSv3 Temp

≤1	0
≤2	0
≤3	0
≤4	0
≤5	3
≤6	5
≤7	10
≤8	16
≤9	9
≤10	4

VulDB

≤1	0
≤2	0
≤3	0
≤4	0
≤5	2
≤6	11
≤7	13
≤8	12
≤9	5
≤10	4

NVD

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	3
≤7	1
≤8	7
≤9	12
≤10	9

CNA

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	2

Fournisseur

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Exploiter 0 jour

<1k	2
<2k	25
<5k	20
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Exploiter aujourd'hui

<1k	40
<2k	5
<5k	2
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Exploiter le volume du marché

🔴 CTI Activités

Affected Products (39): BudgeTone (1), BudgeTone 200 (1), Budgetone 102 (1), GAC2500 (1), GRP261x (2), GSD3710 (2), GVC3202 (1), GWN7000 (3), GWN7610 (2), GXP-2000 (1), GXP14XX (1), GXP16XX (1), GXP16xx VoIP (3), GXP1600 (2), GXP2200 (1), GXV3240 (1), GXV3275 (1), GXV3370 (1), GXV3500 (1), GXV3501 (1), GXV3504 (1), GXV3601 (1), GXV3601HD-LL (1), GXV3611HD-LL (1), GXV3611IR_HD (2), GXV3611_HD Camera (1), GXV3615W-P (1), GXV3615WP_HD (1), GXV3651FHD (1), GXV3662HD (1), Gxv Device (2), HT800 (4), HT801 (2), Ht488 (2), SIP Phone (1), UCM6200 (7), UCM6204 (2), WP820 (1), Wave App (3)

Publié	Base	Temp	Vulnérabilité	Prod	Exp	Con	EPSS	CTI	CVE
09/03/2024	6.3	6.1	Grandstream GXP14XX/GXP16XX End-User Session-Identity Token elévation de privilèges	Inconnue	Not Defined	Not Defined	0.00043	0.05	CVE-2023-50015
24/09/2022	9.3	9.3	Grandstream GSD3710 strcopy buffer overflow	Inconnue	Not Defined	Not Defined	0.00200	0.00	CVE-2022-2025
24/09/2022	9.8	9.6	Grandstream GSD3710 sscanf buffer overflow	Inconnue	Not Defined	Not Defined	0.00175	0.00	CVE-2022-2070
28/10/2021	6.3	6.0	Grandstream HT801 Limited Configuration Shell Privilege Escalation	Inconnue	Not Defined	Official Fix	0.00271	0.00	CVE-2021-37915
28/10/2021	8.8	7.9	Grandstream HT801 Limited Configuration Shell gs_config elévation de privilèges	Inconnue	Proof-of-Concept	Official Fix	0.01275	0.00	CVE-2021-37748
30/03/2021	8.0	8.0	Grandstream GRP261x Administrative Web Interface authentification faible	Inconnue	Not Defined	Not Defined	0.00235	0.04	CVE-2020-25218
30/03/2021	7.6	7.6	Grandstream GRP261x Administrative Web Interface elévation de privilèges	Inconnue	Not Defined	Not Defined	0.00141	0.02	CVE-2020-25217
29/07/2020	7.5	7.5	Grandstream HT800 SSH Service Privilege Escalation	Inconnue	Not Defined	Not Defined	0.00504	0.00	CVE-2020-5763
29/07/2020	6.4	6.4	Grandstream HT800 TR-069 Service dénie de service	Inconnue	Not Defined	Not Defined	0.00575	0.00	CVE-2020-5762
29/07/2020	6.4	6.4	Grandstream HT800 TR-069 Service dénie de service	Inconnue	Not Defined	Not Defined	0.00729	0.00	CVE-2020-5761

37 plus d'entrées ne sont pas affichées

🔒 Login Required

You need to signup and login to see more of the remaining 37 results.

◂ PrécédentAperçuSuivant ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!