Security Advisory

CVE-2021-37915

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-10-28 11:11:29

Last updated 2024-08-04 01:30:09

Assigner mitre

State PUBLISHED

Description

An issue was discovered on the Grandstream HT801 Analog Telephone Adaptor before 1.0.29.8. From the limited configuration shell, it is possible to set the malicious gdb_debug_server variable. As a result, after a reboot, the device downloads and executes malicious scripts from an attacker-defined host.

← Browse all CVEs View on cve.org ↗