CVE-2020-5760
CVE-2020-5760
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 5.5%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
29 Jul 2020Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Grandstream HT800 series firmware version 1.0.17.5 and below is vulnerable to an OS command injection vulnerability. Unauthenticated remote attackers can execute arbitrary commands as root by crafting a special configuration file and sending a crafted SIP message.
Affected products
n/a · Grandstream HT800 SeriesWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →