2 matches found
Grandstream UCM6200 SQL Injection Vulnerability
The Grandstream UCM6200 is an enterprise-class switch for IP telephony communications from Grandstream. A SQL injection vulnerability exists in the Grandstream UCM6200 series prior to version 1.0.20.22. The vulnerability stems from a database-based application that lacks validation of externally...
Grandstream UCM6200 Elevation of Privilege Vulnerability
The Grandstream UCM6200 is an enterprise-class switch for IP telephony communications from Grandstream. A security vulnerability exists in the Grandstream UCM6200 series version 1.0.20.22 and prior versions, which originates from the program storing unencrypted user passwords in a SQLite database...