Grandstream GDS3710 -
Approved changes feed: RSS · Atom
cpe:2.3:h:grandstream:gds3710:-:*:*:*:*:*:*:*
part: h version: - update: *
| Vendor | Grandstream (fb3509d2-60fb-591c-98b3-ccf7c0d07861) |
|---|---|
| Product | Gds3710 (009f854e-e012-53e7-af53-48819c23b618) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2022-2070 |
not_vulnerable | 2026-06-03 14:47:00.188263 |
Grandstream GSD3710 Stack-based Buffer Overflow
CRITICAL (9.8)
In Grandstream GSD3710 in its 1.0.11.13 version, it's possible to overflow the stack since it doesn't check the param length before using the sscanf instruction. Because of that, an attacker could create a socket and connect with a remote IP:port by opening a shell and getting full access to the system. The exploit affects daemons dbmng and logsrv that are running on ports 8000 and 8001 by default.
Published: 2022-09-23T15:06:57.101Z
Updated: 2025-05-22T18:23:28.104Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-2025 |
not_vulnerable | 2026-06-03 14:47:00.053246 |
Grandstream GSD3710 Stack-based Buffer Overflow
CRITICAL (9.8)
an attacker with knowledge of user/pass of Grandstream GSD3710 in its 1.0.11.13 version, could overflow the stack since it doesn't check the param length before use the strcopy instruction. The explotation of this vulnerability may lead an attacker to execute a shell with full access.
Published: 2022-09-23T15:06:54.166Z
Updated: 2025-05-22T19:59:54.569Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.