Grandstream Gxv3611Ir Hd Firmware vulnerabilities
2 known vulnerabilities affecting grandstream/gxv3611ir_hd_firmware.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH1
Vulnerabilities
Page 1 of 1
CVE-2019-10661P2CRITICALCVSS 9.8fixed in 1.0.3.232019-03-30
CVE-2019-10661 [CRITICAL] CWE-287 CVE-2019-10661: On Grandstream GXV3611IR_HD before 1.0.3.23 devices, the root account lacks a password.
On Grandstream GXV3611IR_HD before 1.0.3.23 devices, the root account lacks a password.
nvd
CVE-2019-10660P3HIGHCVSS 8.8fixed in 1.0.3.232019-03-30
CVE-2019-10660 [HIGH] CWE-78 CVE-2019-10660: Grandstream GXV3611IR_HD before 1.0.3.23 devices allow remote authenticated users to execute arbitra
Grandstream GXV3611IR_HD before 1.0.3.23 devices allow remote authenticated users to execute arbitrary code via shell metacharacters in the /goform/systemlog?cmd=set logserver field.
nvd