CVE-2023-50015

An issue was discovered in Grandstream GXP14XX 1.0.8.9 and GXP16XX 1.0.7.13, allows remote attackers to escalate privileges via incorrect access control using an end-user session-identity token...

Grandstream IP Phones GXP14xx <= 1.0.8.9 / GXP16xx <= 1.0.7.70 Privilege Escalation Vulnerability (GSVUL-2023-001)

Grandstream GXP14xx and GXP16xx Series IP phones are prone to a privilege escalation vulnerability. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

Design/Logic Flaw

An issue was discovered in Grandstream GXP14XX 1.0.8.9 and GXP16XX 1.0.7.13, allows remote attackers to escalate privileges via incorrect access control using an end-user session-identity token...

CVE-2023-50015

An issue was discovered in Grandstream GXP14XX 1.0.8.9 and GXP16XX 1.0.7.13, allows remote attackers to escalate privileges via incorrect access control using an end-user session-identity token...

CVE-2023-50015

CVE-2023-50015 affects Grandstream GXP14XX (1.0.8.9) and GXP16XX (1.0.7.13). The issue is an improper access control that lets remote attackers escalate privileges via an end-user session-identity token. • Impact: high (C, I, A all high). • Root cause: incorrect access control. • Remediation stat...