3 matches found
CVE-2019-10660
Grandstream GXV3611IRHD before 1.0.3.23 devices allow remote authenticated users to execute arbitrary code via shell metacharacters in the /goform/systemlog?cmd=set logserver field...
PT-2019-11974 · Grandstream · Grandstream Gxv3611Ir Hd
Name of the Vulnerable Software and Affected Versions: Grandstream GXV3611IR HD versions prior to 1.0.3.23 Description: The issue concerns the root account on the device, which lacks a password. This could potentially allow unauthorized access. Recommendations: For Grandstream GXV3611IR HD versio...
PT-2019-11973 · Grandstream · Grandstream Gxv3611Ir Hd
Name of the Vulnerable Software and Affected Versions: Grandstream GXV3611IR HD version 1.0.3.23 and earlier Description: The issue allows remote authenticated users to execute arbitrary code via shell metacharacters in the "/goform/systemlog?cmd=set logserver" field. This is a remote code...