Security Advisory

CVE-2020-5738

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-04-14 13:48:44

Last updated 2024-08-04 08:39:25

Assigner tenable

State PUBLISHED

Description

Grandstream GXP1600 series firmware 1.0.4.152 and below is vulnerable to authenticated remote command execution when an attacker uploads a specially crafted tar file to the HTTP /cgi-bin/upload_vpntar interface.

← Browse all CVEs View on cve.org ↗