Grandstream Gxp1610 Firmware vulnerabilities
6 known vulnerabilities affecting grandstream/gxp1610_firmware.
Total CVEs
6
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL3HIGH2MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2026-2329P1CRITICALCVSS 9.8PoCfixed in 1.0.7.812026-02-18
CVE-2026-2329 [CRITICAL] CWE-121 CVE-2026-2329: An unauthenticated stack-based buffer overflow vulnerability exists in the HTTP API endpoint /cgi-bi
An unauthenticated stack-based buffer overflow vulnerability exists in the HTTP API endpoint /cgi-bin/api.values.get. A remote attacker can leverage this vulnerability to achieve unauthenticated remote code execution (RCE) with root privileges on a target device. The vulnerability affects all six device models in the series: GXP1610, GXP1615, GXP162
nvd
CVE-2018-17565P2CRITICALCVSS 9.8v1.0.4.1282019-04-01
CVE-2018-17565 [CRITICAL] CWE-78 CVE-2018-17565: Shell Metacharacter Injection in the SSH configuration interface on Grandstream GXP16xx VoIP 1.0.4.1
Shell Metacharacter Injection in the SSH configuration interface on Grandstream GXP16xx VoIP 1.0.4.128 phones allows attackers to execute arbitrary system commands and gain a root shell.
nvd
CVE-2020-5738P3HIGHCVSS 8.8≤ 1.0.4.1522020-04-14
CVE-2020-5738 [HIGH] CWE-59 CVE-2020-5738: Grandstream GXP1600 series firmware 1.0.4.152 and below is vulnerable to authenticated remote comman
Grandstream GXP1600 series firmware 1.0.4.152 and below is vulnerable to authenticated remote command execution when an attacker uploads a specially crafted tar file to the HTTP /cgi-bin/upload_vpntar interface.
nvd
CVE-2020-5739P3HIGHCVSS 8.8≤ 1.0.4.1522020-04-14
CVE-2020-5739 [HIGH] CWE-94 CVE-2020-5739: Grandstream GXP1600 series firmware 1.0.4.152 and below is vulnerable to authenticated remote comman
Grandstream GXP1600 series firmware 1.0.4.152 and below is vulnerable to authenticated remote command execution when an attacker adds an OpenVPN up script to the phone's VPN settings via the "Additional Settings" field in the web interface. When the VPN's connection is established, the user defined script is executed with root privileges.
nvd
CVE-2018-17564P3CRITICALCVSS 9.8v1.0.4.1282019-04-01
CVE-2018-17564 [CRITICAL] CVE-2018-17564: A Malformed Input String to /cgi-bin/delete_CA on Grandstream GXP16xx VoIP 1.0.4.128 phones allows a
A Malformed Input String to /cgi-bin/delete_CA on Grandstream GXP16xx VoIP 1.0.4.128 phones allows attackers to delete configuration parameters and gain admin access to the device.
nvd
CVE-2018-17563P4MEDIUMCVSS 5.3v1.0.4.1282019-04-01
CVE-2018-17563 [MEDIUM] CWE-311 CVE-2018-17563: A Malformed Input String to /cgi-bin/api-get_line_status on Grandstream GXP16xx VoIP 1.0.4.128 phone
A Malformed Input String to /cgi-bin/api-get_line_status on Grandstream GXP16xx VoIP 1.0.4.128 phones allows attackers to dump the device's configuration in cleartext.
nvd