Security Advisory

CVE-2020-5762

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-07-29 18:51:47

Last updated 2024-08-04 08:39:25

Assigner tenable

State PUBLISHED

Description

Grandstream HT800 series firmware version 1.0.17.5 and below is vulnerable to a denial of service attack against the TR-069 service. An unauthenticated remote attacker can stop the service due to a NULL pointer dereference in the TR-069 service. This condition is triggered due to mishandling of the HTTP Authentication field.

← Browse all CVEs View on cve.org ↗