cbcvebase.

Grandstream Ht801 Firmware vulnerabilities

6 known vulnerabilities affecting grandstream/ht801_firmware.

Total CVEs
6
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH6

Vulnerabilities

Page 1 of 1
CVE-2021-37748P2HIGHCVSS 8.8fixed in 1.0.292021-10-28
CVE-2021-37748 [HIGH] CWE-787 CVE-2021-37748: Multiple buffer overflows in the limited configuration shell (/sbin/gs_config) on Grandstream HT801 Multiple buffer overflows in the limited configuration shell (/sbin/gs_config) on Grandstream HT801 devices before 1.0.29 allow remote authenticated users to execute arbitrary code as root via a crafted manage_if setting, thus bypassing the intended restrictions of this shell and taking full control of the device. There are default weak credentials tha
nvd
CVE-2020-5763P3HIGHCVSS 8.8≤ 1.0.17.52020-07-29
CVE-2020-5763 [HIGH] CWE-489 CVE-2020-5763: Grandstream HT800 series firmware version 1.0.17.5 and below contain a backdoor in the SSH service. Grandstream HT800 series firmware version 1.0.17.5 and below contain a backdoor in the SSH service. An authenticated remote attacker can obtain a root shell by correctly answering a challenge prompt.
nvd
CVE-2021-37915P3HIGHCVSS 8.8fixed in 1.0.29.82021-10-28
CVE-2021-37915 [HIGH] CVE-2021-37915: An issue was discovered on the Grandstream HT801 Analog Telephone Adaptor before 1.0.29.8. From the An issue was discovered on the Grandstream HT801 Analog Telephone Adaptor before 1.0.29.8. From the limited configuration shell, it is possible to set the malicious gdb_debug_server variable. As a result, after a reboot, the device downloads and executes malicious scripts from an attacker-defined host.
nvd
CVE-2020-5760P3HIGHCVSS 7.8≤ 1.0.17.52020-07-29
CVE-2020-5760 [HIGH] CWE-78 CVE-2020-5760: Grandstream HT800 series firmware version 1.0.17.5 and below is vulnerable to an OS command injectio Grandstream HT800 series firmware version 1.0.17.5 and below is vulnerable to an OS command injection vulnerability. Unauthenticated remote attackers can execute arbitrary commands as root by crafting a special configuration file and sending a crafted SIP message.
nvd
CVE-2020-5761P3HIGHCVSS 7.5≤ 1.0.17.52020-07-29
CVE-2020-5761 [HIGH] CWE-835 CVE-2020-5761: Grandstream HT800 series firmware version 1.0.17.5 and below is vulnerable to CPU exhaustion due to Grandstream HT800 series firmware version 1.0.17.5 and below is vulnerable to CPU exhaustion due to an infinite loop in the TR-069 service. Unauthenticated remote attackers can trigger this case by sending a one character TCP message to the TR-069 service.
nvd
CVE-2020-5762P3HIGHCVSS 7.5≤ 1.0.17.52020-07-29
CVE-2020-5762 [HIGH] CWE-476 CVE-2020-5762: Grandstream HT800 series firmware version 1.0.17.5 and below is vulnerable to a denial of service at Grandstream HT800 series firmware version 1.0.17.5 and below is vulnerable to a denial of service attack against the TR-069 service. An unauthenticated remote attacker can stop the service due to a NULL pointer dereference in the TR-069 service. This condition is triggered due to mishandling of the HTTP Authentication field.
nvd