Grandstream Grp2612 Firmware vulnerabilities
2 known vulnerabilities affecting grandstream/grp2612_firmware.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH1
Vulnerabilities
Page 1 of 1
CVE-2020-25218P2CRITICALCVSS 9.8v1.0.3.62021-03-29
CVE-2020-25218 [CRITICAL] CWE-306 CVE-2020-25218: Grandstream GRP261x VoIP phone running firmware version 1.0.3.6 (Base) allow Authentication Bypass i
Grandstream GRP261x VoIP phone running firmware version 1.0.3.6 (Base) allow Authentication Bypass in its administrative web interface.
nvd
CVE-2020-25217P3HIGHCVSS 7.2v1.0.3.62021-03-29
CVE-2020-25217 [HIGH] CWE-77 CVE-2020-25217: Grandstream GRP261x VoIP phone running firmware version 1.0.3.6 (Base) allows Command Injection as r
Grandstream GRP261x VoIP phone running firmware version 1.0.3.6 (Base) allows Command Injection as root in its administrative web interface.
nvd