12 matches found
EUVD-2025-23006
Malicious code in bioql PyPI...
CVE-2025-28171
An issue in Grandstream UCM6510 v.1.0.20.52 and before allows a remote attacker to obtain sensitive information via the Login function at /cgi and /webrtccgi...
CVE-2025-28171
An issue in Grandstream UCM6510 v.1.0.20.52 and before allows a remote attacker to obtain sensitive information via the Login function at /cgi and /webrtccgi...
CVE-2025-28171
An issue in Grandstream UCM6510 v.1.0.20.52 and before allows a remote attacker to obtain sensitive information via the Login function at /cgi and /webrtccgi...
CVE-2025-28171
An issue in Grandstream UCM6510 v.1.0.20.52 and before allows a remote attacker to obtain sensitive information via the Login function at /cgi and /webrtccgi...
PT-2025-31219 · Grandstream · Grandstream Ucm6510
Name of the Vulnerable Software and Affected Versions: Grandstream UCM6510 versions prior to 1.0.20.53 Description: An issue allows a remote attacker to obtain sensitive information via the Login function. The vulnerable endpoints are /cgi and /webrtccgi. Recommendations: Update to version...
CVE-2025-28172
Grandstream Networks UCM6510 v1.0.20.52 and before is vulnerable to Improper Restriction of Excessive Authentication Attempts. An attacker can perform an arbitrary number of authentication attempts using different passwords and eventually gain access to the targeted account using a brute force...
CVE-2025-28171
An issue in Grandstream UCM6510 v.1.0.20.52 and before allows a remote attacker to obtain sensitive information via the Login function at /cgi and /webrtccgi...
Grandstream UCM6510 安全漏洞
The Grandstream UCM6510 is a VoIP switch from Grandstream USA. A security vulnerability exists in the Grandstream UCM6510 version 1.0.20.52 and prior versions, which stems from a flaw in the login function that could lead to the disclosure of sensitive information...
Grandstream UCM6510 安全漏洞
The Grandstream UCM6510 is a VoIP switch from Grandstream USA. A security vulnerability exists in the Grandstream UCM6510 version 1.0.20.52 and earlier, which stems from an improperly restricted authentication attempt that could lead to a brute-force breaking attack...
CVE-2025-28172
The CVE-2025-28172 affects Grandstream Networks UCM6510 (versions 1.0.20.52 and earlier). It describes an improper restriction of excessive authentication attempts, enabling brute-force login attempts to target accounts. The cited PT-2025-31217 recommends updating to version 1.0.20.52 or later to...
CVE-2025-28171
The CVE-2025-28171 issue affects Grandstream UCM6510 (versions before 1.0.20.53). The vulnerability arises in the login endpoints (/cgi and /webrtccgi), allowing a remote attacker to obtain sensitive information. Remediation: upgrade to version 1.0.20.53 or later. Note: connected PT-2025-31219 co...