Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/02/04 10:59 p.m.6 views

CVE-2024-0840

The Grandstream UCM Series IP PBX before firmware version 1.0.20.52 is affected by a parameter injection vulnerability in the HTTP interface. A remote and authenticated attacker can execute arbitrary code by sending a crafted HTTP request. Authentication may be possible using a default user and...

8.8CVSS8AI score0.0088EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/04/29 6:42 p.m.21 views

CVE-2024-0840 Grandstream UCM Series IP PBX HTTP Parameter Injection

The Grandstream UCM Series IP PBX before firmware version 1.0.20.52 is affected by a parameter injection vulnerability in the HTTP interface. A remote and authenticated attacker can execute arbitrary code by sending a crafted HTTP request. Authentication may be possible using a default user and...

8.8CVSS8AI score0.0088EPSS
Exploits0References1
CVE
CVE
added 2024/04/29 6:42 p.m.66 views

CVE-2024-0840

CVE-2024-0840 affects Grandstream UCM Series IP PBX firmwares prior to 1.0.20.52 (UCM6202/6204/6208/6510). A parameter injection vulnerability in the HTTP interface allows a remote, authenticated attacker to execute arbitrary code by sending a crafted HTTP request; authentication may be possible ...

8.8CVSS8AI score0.0088EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/04/29 12:0 a.m.4 views

Grandstream UCM Series IP PBX 安全漏洞

The Grandstream UCM Series is a series of IP PBX devices from Grandstream. A security vulnerability exists in the Grandstream UCM Series IP PBX prior to firmware version 1.0.20.52, which originates from a vulnerability that allows an authenticated remote attacker to execute arbitrary code by...

8.8CVSS7.5AI score0.0088EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/04/29 12:0 a.m.4 views

PT-2024-15859 · Grandstream · Grandstream Ucm Series Ip Pbx

Name of the Vulnerable Software and Affected Versions: Grandstream UCM Series IP PBX versions prior to 1.0.20.52 Description: The issue is related to a parameter injection vulnerability in the HTTP interface. A remote and authenticated attacker can execute arbitrary code by sending a crafted HTTP...

8.8CVSS8.4AI score0.0088EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2016/10/04 12:0 a.m.16 views

Grandstream UCM Series IP PBX Detection (SIP)

SIP based detection of Grandstream UCM devices. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.8AI score
Exploits0
Rows per page
Query Builder