← back
CVE-2020-5760

CVE-2020-5760

EPSS 5.5%CWE-78
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS EPSS 5.5%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
29 Jul 2020Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Grandstream HT800 series firmware version 1.0.17.5 and below is vulnerable to an OS command injection vulnerability. Unauthenticated remote attackers can execute arbitrary commands as root by crafting a special configuration file and sending a crafted SIP message.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →