26 matches found
CVE-2020-5762
Grandstream HT800 series firmware version 1.0.17.5 and below is vulnerable to a denial of service attack against the TR-069 service. An unauthenticated remote attacker can stop the service due to a NULL pointer dereference in the TR-069 service. This condition is triggered due to mishandling of t...
CVE-2020-5762
CVE-2020-5762 affects Grandstream HT800 series firmware
CVE-2020-5761
Grandstream HT800 series firmware version 1.0.17.5 and below is vulnerable to CPU exhaustion due to an infinite loop in the TR-069 service. Unauthenticated remote attackers can trigger this case by sending a one character TCP message to the TR-069 service...
CVE-2020-5761
The CVE-2020-5761 issue affects Grandstream HT800 series firmware 1.0.17.5 and earlier. A bug in the TR-069 service can enter an infinite loop, causing CPU exhaustion when an unauthenticated remote attacker sends a single-character TCP message to TR-069. Public descriptions confirm the impact is ...
CVE-2020-5760
The CVE-2020-5760 entry applies to Grandstream HT800 series firmware
CVE-2020-5760
Grandstream HT800 series firmware version 1.0.17.5 and below is vulnerable to an OS command injection vulnerability. Unauthenticated remote attackers can execute arbitrary commands as root by crafting a special configuration file and sending a crafted SIP message...