Grandstream Gxp1600 Series
Approved changes feed: RSS · Atom
cpe:2.3:a:n/a:grandstream_gxp1600_series:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | N/A (22f567d3-1203-528c-8f0e-3eb9c2f6ca78) |
|---|---|
| Product | Grandstream Gxp1600 Series (1d6dd245-b402-5a8e-9bbb-c74726fa156c) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2020-5739 |
vulnerable | 2026-06-08 05:26:43.648453 |
Details available
Grandstream GXP1600 series firmware 1.0.4.152 and below is vulnerable to authenticated remote command execution when an attacker adds an OpenVPN up script to the phone's VPN settings via the "Additional Settings" field in the web interface. When the VPN's connection is established, the user defined script is executed with root privileges.
Published: 2020-04-14T13:48:50.000Z
Updated: 2024-08-04T08:39:25.705Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-5738 |
vulnerable | 2026-06-08 05:26:43.632286 |
Details available
Grandstream GXP1600 series firmware 1.0.4.152 and below is vulnerable to authenticated remote command execution when an attacker uploads a specially crafted tar file to the HTTP /cgi-bin/upload_vpntar interface.
Published: 2020-04-14T13:48:44.000Z
Updated: 2024-08-04T08:39:25.629Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.